Lucene search
+L

12 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-0124

Malicious code in bioql PyPI...

7.5CVSS6.1AI score0.01189EPSS
Exploits0References6
nessus
nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-25882

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the externaldata field of the tensor proto can have a path to the file which...

7.5CVSS6.5AI score0.01608EPSS
Exploits1References2
redhatcve
redhatcve
added 2025/02/06 2:11 a.m.12 views

CVE-2022-25882

Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the externaldata field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory, for example "../../../etc/passwd"...

7.5CVSS6.6AI score0.01608EPSS
Exploits1References1
osv
osv
added 2024/02/23 6:30 p.m.30 views

GHSA-WHH8-FJGC-QP73 Onnx Directory Traversal vulnerability

Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the externaldata field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory. The vulnerability occurs as a bypass for the patch adde...

7.5CVSS7.5AI score0.01189EPSS
Exploits0References7
github
github
added 2024/02/23 6:30 p.m.49 views

Onnx Directory Traversal vulnerability

Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the externaldata field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory. The vulnerability occurs as a bypass for the patch adde...

7.5CVSS7.5AI score0.01189EPSS
Exploits0References7Affected Software1
pypa
pypa
added 2024/02/23 6:15 p.m.6 views

PYSEC-2024-222

Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the externaldata field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory. The vulnerability occurs as a bypass for the patch adde...

7.5CVSS7AI score0.01608EPSS
Exploits1References5Affected Software1
osv
osv
added 2024/02/23 6:15 p.m.12 views

PYSEC-2024-222

Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the externaldata field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory. The vulnerability occurs as a bypass for the patch adde...

7.5CVSS7.5AI score0.01189EPSS
Exploits0References5
nessus
nessus
added 2023/04/20 12:0 a.m.35 views

CBL Mariner 2.0 Security Update: pytorch (CVE-2022-25882)

The version of pytorch installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-25882 advisory. - Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the externaldata field ...

7.5CVSS6.4AI score0.01608EPSS
Exploits1References2
cbl_mariner
cbl_mariner
added 2023/04/16 12:49 a.m.20 views

CVE-2022-25882 affecting package pytorch for versions less than 2.0.0-1

CVE-2022-25882 affecting package pytorch for versions less than 2.0.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.7AI score0.01608EPSS
Exploits1
vulnersosv
vulnersosv
added 2023/01/26 9:30 p.m.6 views

acuity (=6.18.0), acuitypro (=6.18.0) +81 more potentially affected by CVE-2022-25882 via onnx (>=0.2.0 <=1.12.0)

onnx PYPI version =0.2.0, =0.0.0, =0.0.157, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =0.5.8, =0.1.0, =0.3.0 and more Source cves: CVE-2022-25882 Source advisory: OSV:GHSA-FFXJ-547X-5J7C...

7.5CVSS6.7AI score0.01608EPSS
Exploits1
cve
cve
added 2023/01/25 5:0 a.m.101 views

CVE-2022-25882

CVE-2022-25882 affects onnx before 1.13.0, where the external_data field of the tensor proto can contain a path outside the model directory (example: ../../../etc/passwd), enabling directory traversal. This could impact confidentiality. Remediation: upgrade to onnx 1.13.0 or later. The provided d...

7.5CVSS7.3AI score0.01608EPSS
Exploits1References6Affected Software1
vulnrichment
vulnrichment
added 2023/01/25 5:0 a.m.12 views

CVE-2022-25882

Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the externaldata field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory, for example "../../../etc/passwd"...

7.5CVSS7.1AI score0.01608EPSS
Exploits1References6
Rows per page
Query Builder