Vulnerability	Vulnerable Version
M Directory Traversal InvokeAI is an An implementation of Stable Diffusion which provides various new features and options to aid the image generation process Affected versions of this package are vulnerable to Directory Traversal via the `_is_valid_path` method. An attacker can download arbitrary files via the `/images/download/get_bulk_download_item` endpoint by sending requests containing relative paths (e.g., `../`) Note: This vulnerability is only applicable to Windows systems. How to fix Directory Traversal? Upgrade `InvokeAI` to version 6.7.0rc1 or higher.	[,6.7.0rc1)
C External Control of File Name or Path InvokeAI is an An implementation of Stable Diffusion which provides various new features and options to aid the image generation process Affected versions of this package are vulnerable to External Control of File Name or Path via the `GET /api/v1/images/download/{bulk_download_item_name}` endpoint. An attacker can read and delete arbitrary files on the server, including sensitive files such as SSH keys, databases, and configuration files, by manipulating the filename arguments. How to fix External Control of File Name or Path? Upgrade `InvokeAI` to version 6.7.0 or higher.	[,6.7.0)

Directory Traversal

InvokeAI is an An implementation of Stable Diffusion which provides various new features and options to aid the image generation process

Affected versions of this package are vulnerable to Directory Traversal via the _is_valid_path method. An attacker can download arbitrary files via the /images/download/get_bulk_download_item endpoint by sending requests containing relative paths (e.g., ../)

Note: This vulnerability is only applicable to Windows systems.

How to fix Directory Traversal?

Upgrade InvokeAI to version 6.7.0rc1 or higher.

[,6.7.0rc1)

External Control of File Name or Path

InvokeAI is an An implementation of Stable Diffusion which provides various new features and options to aid the image generation process

Affected versions of this package are vulnerable to External Control of File Name or Path via the GET /api/v1/images/download/{bulk_download_item_name} endpoint. An attacker can read and delete arbitrary files on the server, including sensitive files such as SSH keys, databases, and configuration files, by manipulating the filename arguments.

How to fix External Control of File Name or Path?

Upgrade InvokeAI to version 6.7.0 or higher.

[,6.7.0)

Go back to all versions of this package