Lucene search

[email protected]NVD:CVE-2022-25882

HistoryJan 26, 2023 - 9:15 p.m.

CVE-2022-25882

2023-01-2621:15:31

CWE-22

[email protected]

web.nvd.nist.gov

onnx package

vulnerable

directory traversal

external data field

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

59.9%

JSON

Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory, for example “…/…/…/etc/passwd”

Affected configurations

Nvd

Node

linuxfoundationonnxRange<1.13.0

VendorProductVersionCPE
linuxfoundationonnx*cpe:2.3:a:linuxfoundation:onnx:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linuxfoundation	onnx	*	cpe:2.3:a:linuxfoundation:onnx::::::::

References

gist.github.com/jnovikov/02a9aff9bf2188033e77bd91ff062856

github.com/onnx/onnx/blob/96516aecd4c110b0ac57eba08ac236ebf7205728/onnx/checker.cc%23L129

github.com/onnx/onnx/commit/f369b0e859024095d721f1d1612da5a8fa38988d

github.com/onnx/onnx/issues/3991

github.com/onnx/onnx/pull/4400

security.snyk.io/vuln/SNYK-PYTHON-ONNX-2395479

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

59.9%

JSON

Related for NVD:CVE-2022-25882

osv5 github2 prion2 cvelist2 cbl_mariner1 nessus4 ubuntucve1 cve2 veracode1 nvd1 vulnrichment1 ibm2