7 matches found
a2 (>=0.10.7 <=0.10.13), aad2onnx (=0.1.4) +1441 more potentially affected by CVE-2025-51480 via onnx (>=0.2.0 <=1.9.0)
onnx PYPI version =0.2.0, =0.10.7, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =0.1.4, =0.4.4, =0.1.0, =0.0.0, =1.0.1 and more Source cves: CVE-2025-51480 Source advisory: SNYK:PYTHON-ONNX-10877916...
acetone-nnet (>=0.1.0 <=0.4.0.dev1), acuity (=6.18.0) +183 more potentially affected by CVE-2024-7776 via onnx (>=1.10.1 <=1.16.2)
onnx PYPI version =1.10.1, =0.1.0, =0.0.0, =0.0.157, =1.3.0, =0.3.1, =1.3.0, =0.0.9, =0.2.19, =0.0.1, =0.1.0, =0.1.4 - autodistill-yolonas =0.1.1 and more Source cves: CVE-2024-7776 Source advisory: SNYK:PYTHON-ONNX-9510927...
PYSEC-2024-223
Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds Read as the ONNXASSERT and ONNXASSERTM functions have an off by one string copy...
acetone-nnet (>=0.1.0 <=0.4.0.dev1), acuity (=6.18.0) +154 more potentially affected by CVE-2024-27318 via onnx (>=0.2.0 <=1.15.0)
onnx PYPI version =0.2.0, =0.1.0, =0.0.0, =0.0.157, =1.3.0, =0.0.9, =0.2.19, =0.0.1, =0.1.0, =0.0.0, =1.0.45, =1.44.0, =1.55.0 and more Source cves: CVE-2024-27318 Source advisory: OSV:PYSEC-2024-222...
AZL-35148 CVE-2024-27319 affecting package pytorch for versions less than 2.2.2-1
Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds Read as the ONNXASSERT and ONNXASSERTM functions have an off by one string copy...
Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory for example "../../../etc/passwd"
...
acuity (=6.18.0), acuitypro (=6.18.0) +81 more potentially affected by CVE-2022-25882 via onnx (>=0.2.0 <=1.12.0)
onnx PYPI version =0.2.0, =0.0.0, =0.0.157, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =0.5.8, =0.1.0, =0.3.0 and more Source cves: CVE-2022-25882 Source advisory: OSV:GHSA-FFXJ-547X-5J7C...