Add an identifier for the advisory generated by Doyensec's ComfyUI detectors.

tooryx · copybara-github · commit ba14a7069054 · 2025-04-16T09:04:41.000-07:00
PiperOrigin-RevId: 748312760
Change-Id: I8bf1f99e7de57c97e4725143b0b0ca0b88ea984f
diff --git a/doyensec/detectors/comfyui_arbitrary_read_filename/src/main/java/com/google/tsunami/plugins/detectors/comfyui/filenameread/ComfyUiFileReadViaFilename.java b/doyensec/detectors/comfyui_arbitrary_read_filename/src/main/java/com/google/tsunami/plugins/detectors/comfyui/filenameread/ComfyUiFileReadViaFilename.java
@@ -375,7 +375,9 @@ private DetectionReport buildDetectionReport(
         .setVulnerability(
             Vulnerability.newBuilder()
                 .setMainId(
-                    VulnerabilityId.newBuilder().setPublisher(VULNERABILITY_REPORT_PUBLISHER))
+                    VulnerabilityId.newBuilder()
+                        .setPublisher(VULNERABILITY_REPORT_PUBLISHER)
+                        .setValue("COMFYUI_2025_FILE_READ_FILENAME"))
                 .setSeverity(Severity.CRITICAL)
                 .setTitle(VULNERABILITY_REPORT_TITLE)
                 .setDescription(VULNERABILITY_REPORT_DESCRIPTION)
diff --git a/doyensec/detectors/comfyui_arbitrary_read_filename/src/test/java/com/google/tsunami/plugins/detectors/comfyui/filenameread/ComfyUiFileReadViaFilenameTest.java b/doyensec/detectors/comfyui_arbitrary_read_filename/src/test/java/com/google/tsunami/plugins/detectors/comfyui/filenameread/ComfyUiFileReadViaFilenameTest.java
@@ -156,7 +156,9 @@ private DetectionReport generateDetectionReport(
         .setVulnerability(
             Vulnerability.newBuilder()
                 .setMainId(
-                    VulnerabilityId.newBuilder().setPublisher(VULNERABILITY_REPORT_PUBLISHER))
+                    VulnerabilityId.newBuilder()
+                        .setPublisher(VULNERABILITY_REPORT_PUBLISHER)
+                        .setValue("COMFYUI_2025_FILE_READ_FILENAME"))
                 .setSeverity(Severity.CRITICAL)
                 .setTitle(VULNERABILITY_REPORT_TITLE)
                 .setDescription(VULNERABILITY_REPORT_DESCRIPTION)
diff --git a/doyensec/detectors/comfyui_arbitrary_read_savepath/src/main/java/com/google/tsunami/plugins/detectors/comfyui/savepathread/ComfyUiFileReadViaSavePath.java b/doyensec/detectors/comfyui_arbitrary_read_savepath/src/main/java/com/google/tsunami/plugins/detectors/comfyui/savepathread/ComfyUiFileReadViaSavePath.java
@@ -380,7 +380,9 @@ private DetectionReport buildDetectionReport(
         .setVulnerability(
             Vulnerability.newBuilder()
                 .setMainId(
-                    VulnerabilityId.newBuilder().setPublisher(VULNERABILITY_REPORT_PUBLISHER))
+                    VulnerabilityId.newBuilder()
+                        .setPublisher(VULNERABILITY_REPORT_PUBLISHER)
+                        .setValue("COMFYUI_2025_FILE_READ_SAVEPATH"))
                 .setSeverity(Severity.CRITICAL)
                 .setTitle(VULNERABILITY_REPORT_TITLE)
                 .setDescription(VULNERABILITY_REPORT_DESCRIPTION)
diff --git a/doyensec/detectors/comfyui_arbitrary_read_savepath/src/test/java/com/google/tsunami/plugins/detectors/comfyui/savepathread/ComfyUiFileReadViaSavePathTest.java b/doyensec/detectors/comfyui_arbitrary_read_savepath/src/test/java/com/google/tsunami/plugins/detectors/comfyui/savepathread/ComfyUiFileReadViaSavePathTest.java
@@ -156,7 +156,9 @@ private DetectionReport generateDetectionReport(
         .setVulnerability(
             Vulnerability.newBuilder()
                 .setMainId(
-                    VulnerabilityId.newBuilder().setPublisher(VULNERABILITY_REPORT_PUBLISHER))
+                    VulnerabilityId.newBuilder()
+                        .setPublisher(VULNERABILITY_REPORT_PUBLISHER)
+                        .setValue("COMFYUI_2025_FILE_READ_SAVEPATH"))
                 .setSeverity(Severity.CRITICAL)
                 .setTitle(VULNERABILITY_REPORT_TITLE)
                 .setDescription(VULNERABILITY_REPORT_DESCRIPTION)
diff --git a/doyensec/detectors/comfyui_exposed_ui_detector/src/main/java/com/google/tsunami/plugins/detectors/comfyui/exposed/ComfyUiExposedUi.java b/doyensec/detectors/comfyui_exposed_ui_detector/src/main/java/com/google/tsunami/plugins/detectors/comfyui/exposed/ComfyUiExposedUi.java
@@ -190,7 +190,9 @@ private DetectionReport buildDetectionReport(
         .setVulnerability(
             Vulnerability.newBuilder()
                 .setMainId(
-                    VulnerabilityId.newBuilder().setPublisher(VULNERABILITY_REPORT_PUBLISHER))
+                    VulnerabilityId.newBuilder()
+                        .setPublisher(VULNERABILITY_REPORT_PUBLISHER)
+                        .setValue("COMFYUI_EXPOSED_UI"))
                 .setSeverity(Severity.CRITICAL)
                 .setTitle(VULNERABILITY_REPORT_TITLE)
                 .setDescription(VULNERABILITY_REPORT_DESCRIPTION)
diff --git a/doyensec/detectors/comfyui_exposed_ui_detector/src/test/java/com/google/tsunami/plugins/detectors/comfyui/exposed/ComfyUiExposedUiTest.java b/doyensec/detectors/comfyui_exposed_ui_detector/src/test/java/com/google/tsunami/plugins/detectors/comfyui/exposed/ComfyUiExposedUiTest.java
@@ -145,7 +145,9 @@ private DetectionReport generateDetectionReport(
         .setVulnerability(
             Vulnerability.newBuilder()
                 .setMainId(
-                    VulnerabilityId.newBuilder().setPublisher(VULNERABILITY_REPORT_PUBLISHER))
+                    VulnerabilityId.newBuilder()
+                        .setPublisher(VULNERABILITY_REPORT_PUBLISHER)
+                        .setValue("COMFYUI_EXPOSED_UI"))
                 .setSeverity(Severity.CRITICAL)
                 .setTitle(VULNERABILITY_REPORT_TITLE)
                 .setDescription(VULNERABILITY_REPORT_DESCRIPTION)
diff --git a/doyensec/detectors/comfyui_preauth_rce/src/main/java/com/google/tsunami/plugins/detectors/comfyui/rce/ComfyUiRemoteCodeExecution.java b/doyensec/detectors/comfyui_preauth_rce/src/main/java/com/google/tsunami/plugins/detectors/comfyui/rce/ComfyUiRemoteCodeExecution.java
@@ -276,7 +276,9 @@ private DetectionReport buildDetectionReport(
         .setVulnerability(
             Vulnerability.newBuilder()
                 .setMainId(
-                    VulnerabilityId.newBuilder().setPublisher(VULNERABILITY_REPORT_PUBLISHER))
+                    VulnerabilityId.newBuilder()
+                        .setPublisher(VULNERABILITY_REPORT_PUBLISHER)
+                        .setValue("COMFYUI_2025_PREAUTH_RCE"))
                 .setSeverity(Severity.CRITICAL)
                 .setTitle(VULNERABILITY_REPORT_TITLE)
                 .setDescription(VULNERABILITY_REPORT_DESCRIPTION)
diff --git a/doyensec/detectors/comfyui_preauth_rce/src/test/java/com/google/tsunami/plugins/detectors/comfyui/rce/ComfyUiRemoteCodeExecutionTest.java b/doyensec/detectors/comfyui_preauth_rce/src/test/java/com/google/tsunami/plugins/detectors/comfyui/rce/ComfyUiRemoteCodeExecutionTest.java
@@ -142,7 +142,9 @@ private DetectionReport generateDetectionReport(
         .setVulnerability(
             Vulnerability.newBuilder()
                 .setMainId(
-                    VulnerabilityId.newBuilder().setPublisher(VULNERABILITY_REPORT_PUBLISHER))
+                    VulnerabilityId.newBuilder()
+                        .setPublisher(VULNERABILITY_REPORT_PUBLISHER)
+                        .setValue("COMFYUI_2025_PREAUTH_RCE"))
                 .setSeverity(Severity.CRITICAL)
                 .setTitle(VULNERABILITY_REPORT_TITLE)
                 .setDescription(VULNERABILITY_REPORT_DESCRIPTION)
