CVE-2026-34446 vulnerabilities

Vulnerabilities for packages: py3-onnx...

SUSE CVE-2026-34446

Open Neural Network Exchange ONNX is an open standard for machine learning interoperability. Prior to version 1.21.0, there is an issue in onnx.load, the code checks for symlinks to prevent path traversal, but completely misses hardlinks because a hardlink looks exactly like a regular file on the...

acetone-nnet (>=0.1.0 <=0.4.0.dev1), acuity (=6.18.0) +370 more potentially affected by CVE-2026-34446 via onnx (>=1.10.1 <=1.20.1)

onnx PYPI version =1.10.1, =0.1.0, =0.1.0, =0.0.0, =0.0.157, =0.1.0, =0.1.8, =1.7.0, =1.3.0, =0.10.0, =0.3.1, =1.0.2 and more Source cves: CVE-2026-34446 Source advisory: SNYK:PYTHON-ONNX-15873848...

acetone-nnet (>=0.1.0 <=0.4.0.dev1), acuity (=6.18.0) +371 more potentially affected by CVE-2026-34446 via onnx (>=0.2.0 <=1.20.1)

onnx PYPI version =0.2.0, =0.1.0, =0.1.0, =0.0.0, =0.0.157, =0.1.0, =0.1.8, =1.7.0, =1.3.0, =0.10.0, =0.3.1, =1.0.2 and more Source cves: CVE-2026-34446 Source advisory: OSV:GHSA-CMW6-HCPP-C6JP...

CVE-2026-34446

Open Neural Network Exchange ONNX is an open standard for machine learning interoperability. Prior to version 1.21.0, there is an issue in onnx.load, the code checks for symlinks to prevent path traversal, but completely misses hardlinks because a hardlink looks exactly like a regular file on the...

CVE-2022-34446

creationtimestamp| type| source ---|---|--- 2025-03-26 15:26:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8865...

CVE-2024-34446

CVE-2024-34446 affects Mullvad VPN on Android (versions up to 2024.1). The issue occurs when Mullvad fails to set a DNS server in the blocking state after a tunnel creation failure, allowing DNS traffic to leak from the device. Reports from multiple sources (NVD, Red Hat, OSV, CNNVD, CVE listings...

CVE-2023-34446 iTop XSS vulnerability on pages/preferences.php

iTop is an open source, web-based IT service management platform. Prior to versions 3.0.4 and 3.1.0, when displaying pages/preferences.php, cross site scripting is possible. This issue is fixed in versions 3.0.4 and 3.1.0...

CVE-2023-34446 iTop XSS vulnerability on pages/preferences.php

iTop is an open source, web-based IT service management platform. Prior to versions 3.0.4 and 3.1.0, when displaying pages/preferences.php, cross site scripting is possible. This issue is fixed in versions 3.0.4 and 3.1.0...

CVE-2023-34446

CVE-2023-34446 concerns an XSS vulnerability in iTop, a web-based IT service management platform. The issue occurs prior to versions 3.0.4 and 3.1.0 when rendering pages/preferences.php, allowing cross-site scripting. The vulnerability is fixed in 3.0.4 and 3.1.0. Affected software: iTop (open so...

CVE-2022-34446

PowerPath Management Appliance with versions 3.3 & 3.2 contains Authorization Bypass vulnerability. An authenticated remote user with limited privileges e.g., of role Monitoring can exploit this issue and gain access to sensitive information, and modify the configuration...

CVE-2022-34446

PowerPath Management Appliance with versions 3.3 & 3.2 contains Authorization Bypass vulnerability. An authenticated remote user with limited privileges e.g., of role Monitoring can exploit this issue and gain access to sensitive information, and modify the configuration...

CVE-2022-34446

PowerPath Management Appliance with versions 3.3 & 3.2 contains Authorization Bypass vulnerability. An authenticated remote user with limited privileges e.g., of role Monitoring can exploit this issue and gain access to sensitive information, and modify the configuration...

CVE-2022-34446

PowerPath Management Appliance with versions 3.3 & 3.2 contains Authorization Bypass vulnerability. An authenticated remote user with limited privileges e.g., of role Monitoring can exploit this issue and gain access to sensitive information, and modify the configuration...

CVE-2022-34446

Dell PowerPath Management Appliance (VM/Docker) versions 3.2–3.3 are affected by an Authorization Bypass vulnerability. An authenticated remote user with limited privileges (e.g., Monitoring) can access sensitive data and modify configuration due to weak access control. Affected component: PowerP...

CVE-2021-34446

Technical details (affected product/version, root cause, impact, or exploit information) for CVE-2021-34446 are not provided in the supplied documents. Monitor for updates.

KB5004298: Windows 8.1 and Windows Server 2012 R2 Security Update (July 2021)

The remote Windows host is missing security update 5004298. It is, therefore, affected by multiple vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself i...

Security Updates for Internet Explorer (July 2021)

The Internet Explorer installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerabilities: - A security bypass vulnerability exists in the HTML platforms component. An unauthenticated, remote attacker can exploit this to bypass security in ord...

KB5004245: Windows 10 1909 Security Update (July 2021)

The remote Windows host is missing security update 5004245. It is, therefore, affected by multiple vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself i...

KB5004237: Windows 10 Version 2004 / Windows 10 Version 20H2 / Windows 10 Version 21H1 Security Update (July 2021)

The remote Windows host is missing security update 5004237. It is, therefore, affected by multiple vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself i...