Vulners
Lucene search
Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory for example "../../../etc/passwd"
| Reporter | Title | Published | Views | Family All 30 |
|---|---|---|---|---|
 | Security Bulletin: Multiple Vulnerabilities affecting IBM Watson Studio in Cloud Pak for Data Are Addressed | 8 Dec 202311:04 | – | ibm |
| Security Bulletin: Mutiple Vulnerabilties in Open Source packages affecting IBM Watson Machine Learning Accelerator on Cloud Pak for Data | 12 Dec 202317:35 | – | ibm |
 | CVE-2022-25882 affecting package pytorch for versions less than 2.0.0-1 | 16 Apr 202300:49 | – | cbl_mariner |
 | Open Neural Network Exchange 路径遍历漏洞 | 26 Jan 202300:00 | – | cnnvd |
 | CVE-2022-25882 | 25 Jan 202305:00 | – | cve |
 | CVE-2022-25882 | 25 Jan 202305:00 | – | cvelist |
 | EUVD-2023-0183 | 3 Oct 202520:07 | – | euvd |
 | Directory Traversal in onnx | 26 Jan 202321:30 | – | github |
 | CBL Mariner 2.0 Security Update: pytorch (CVE-2022-25882) | 20 Apr 202300:00 | – | nessus |
| Linux Distros Unpatched Vulnerability : CVE-2022-25882 | 10 Sep 202500:00 | – | nessus |
10
Node
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
03 Apr 2023 07:00Current
6.3Medium risk
Vulners AI Score6.3
CVSS 3.17.5
EPSS0.01608
SSVC