CVE-2024-11042 is a critical security vulnerability classified under CWE-73 (External Control of File Name or Path) affecting the invoke-ai/invokeai project, specifically version 5.0.2. The vulnerability resides in the web API endpoint POST /api/v1/images/delete, which improperly handles user-supplied input for file deletion requests. Due to insufficient validation or sanitization of the file path parameter, an attacker can craft requests to delete arbitrary files on the server hosting the application. This can include critical system files such as SSH private keys, SQLite database files, and configuration files that are essential for application integrity and availability. The vulnerability is remotely exploitable without requiring any authentication or user interaction, making it highly accessible to attackers. The CVSS v3.0 base score of 9.1 reflects the ease of exploitation (network vector, low complexity), no privileges required, and the high impact on integrity and availability. Although no public exploits have been reported yet, the potential for destructive impact is significant, especially in environments where invoke-ai/invokeai is used for AI image generation or related services. The lack of patch links suggests that a fix may not yet be publicly available, increasing the urgency for organizations to implement compensating controls. The vulnerability’s exploitation could lead to denial of service, data loss, or compromise of system security credentials, severely disrupting operations and trust in affected deployments.

For European organizations, the impact of CVE-2024-11042 can be severe. Organizations using invoke-ai/invokeai in production or research environments risk unauthorized deletion of critical files, which can cause service outages, data corruption, or loss of sensitive credentials. This can disrupt AI-driven workflows, damage intellectual property, and compromise system security. The deletion of SSH keys or configuration files could allow attackers to escalate privileges or maintain persistence after initial exploitation. Given the vulnerability requires no authentication, attackers can launch automated attacks at scale, increasing the risk of widespread disruption. Industries relying on AI tools for innovation, such as technology firms, research institutions, and media companies, are particularly vulnerable. The loss of availability and integrity may also lead to regulatory compliance issues under GDPR if personal data or system logs are affected. Recovery efforts may require significant downtime and forensic investigation, increasing operational costs and reputational damage.

1. Immediately restrict network access to the POST /api/v1/images/delete endpoint by implementing firewall rules or API gateway controls to allow only trusted internal users or systems. 2. Apply strict input validation and sanitization on file path parameters to ensure only authorized and expected files can be deleted, using allowlists or canonical path checks. 3. Implement role-based access control (RBAC) and authentication mechanisms to prevent unauthorized API usage. 4. Monitor file system integrity with tools that detect unexpected deletions or modifications, and alert administrators promptly. 5. Regularly back up critical files such as SSH keys, databases, and configuration files to enable rapid recovery. 6. Stay informed about official patches or updates from the invoke-ai project and apply them as soon as they become available. 7. Conduct security audits and penetration tests focusing on API endpoints to identify similar vulnerabilities. 8. Consider isolating the invoke-ai service in a container or sandbox environment with limited file system permissions to minimize potential damage.