CNNVD-202506-1856 Information

CNNVD ID

CNNVD-202506-1856

Related CVE

CVE-2025-6107

• CNNVD Published: 2025-06-16

Description (Chinese)

ComfyUI是comfyanonymous个人开发者的一个最强大和模块化的扩散模型 GUI 和后端。 ComfyUI 0.3.40版本存在安全漏洞，该漏洞源于动态属性问题，可能导致对象属性操作。

Description (English)

ComfyUI is one of the most powerful and modular proliferation models of the GUI and backends of the confyanonymous personal developers. There is a security loophole in version CCfyUI 0.3.40, which stems from the issue of dynamic properties and may lead to object properties.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-06-16

Last Modified

2026-02-24

References

https://gist.github.com/superboy-zjc/f71b84ed074260a5e459581caa2f1fb2 https://vuldb.com/?submit.590921 https://vuldb.com/?ctiid.312576 https://gist.github.com/superboy-zjc/f71b84ed074260a5e459581caa2f1fb2#proof-of-concept https://vuldb.com/?id.312576 https://access.redhat.com/security/cve/cve-2025-6107