ComfyUI-Manager Unauthenticated Configuration and Data Manipulation Vulnerability

A vulnerability in ComfyUI-Manager versions prior to 3.38 allows remote attackers to potentially alter the application's configuration and critical data. This issue arises because the application stored its files in a poorly protected location accessible through the web interface. Users who ran ComfyUI with open external connections may have been exposed to data tampering by malicious actors.

Impact

Exploitation of this vulnerability could lead to unauthorized modification of the application's configuration and critical data, with potential consequences for the integrity of the user's ComfyUI environment.

Reproduction

The vulnerability can be reproduced by accessing the ComfyUI-Manager web interface on a version prior to 3.38, while ComfyUI is running with external connections enabled. This setup allows remote attackers to manipulate the application's configuration and data.

Remediation

Users can update to ComfyUI-Manager version 3.38 or later, which includes the necessary security patch. Instructions for updating ComfyUI-Manager are available in the application's GitHub repository.