We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-21576



Description

ComfyUI-Bmad-Nodes is vulnerable to Code Injection. The issue stems from a validation bypass in the BuildColorRangeHSVAdvanced, FilterContour and FindContour custom nodes. In the entrypoint function to each node, there’s a call to eval which can be triggered by generating a workflow that injects a crafted string into the node. This can result in executing arbitrary code on the server.

Reserved 2023-12-22 | Published 2024-12-13 | Updated 2024-12-23 | Assigner snyk


CRITICAL: 10.0CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:HCRITICAL: 10.0CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Problem types

Code Injection

Product status

Any version before *
affected

Credits

Raul Onitza-Klugman (Snyk Security Research)

References

github.com/...490cbadf32a1fe92ff820ebabe88c51ee8/cv_nodes.py

cve.org (CVE-2024-21576)

nvd.nist.gov (CVE-2024-21576)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-21576

Support options

Helpdesk Chat, Email, Knowledgebase
Subscribe to our newsletter to learn more about our work.