High severity7.5NVD Advisory· Published Mar 20, 2025· Updated Jun 17, 2026
CVE-2024-10935
CVE-2024-10935
Description
automatic1111/stable-diffusion-webui version 1.10.0 contains a vulnerability where the server fails to handle excessive characters appended to the end of multipart boundaries. This flaw can be exploited by sending malformed multipart requests with arbitrary characters at the end of the boundary, leading to excessive resource consumption and a complete denial of service (DoS) for all users. The vulnerability is unauthenticated, meaning no user login or interaction is required for an attacker to exploit this issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2=1.10.0+ 1 more
- (no CPE)range: =1.10.0
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
1- huntr.com/bounties/e6fdc6ed-f38d-4798-b60a-0e47893a81a6nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.