Lucene search
+L

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/04/14 3:3 p.m.4 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a Path Traversal in ONNX [CVE-2025-51480]

Summary IBM Watson Speech Services Cartridge is vulnerable to a Path Traversal, due to an issue with onnx.externaldatahelper.saveexternaldata in ONNX 1.17.0 that allows attackers to bypass intended directory restrictions. CVE-2025-51480. Onnx is used in our speech service runtimes. This...

8.8CVSS7.3AI score0.00578EPSS
Exploits1Affected Software1
UbuntuCve
UbuntuCve
added 2025/07/22 4:15 p.m.2 views

CVE-2025-51480

Path Traversal vulnerability in onnx.externaldatahelper.saveexternaldata in ONNX 1.17.0 allows attackers to overwrite arbitrary files by supplying crafted externaldata.location paths containing traversal sequences, bypassing intended directory restrictions...

8.8CVSS7.3AI score0.00578EPSS
Exploits1References6
CVE
CVE
added 2025/07/22 12:0 a.m.31 views

CVE-2025-51480

A CVE-2025-51480 exists for ONNX 1.17.0 reporting a path traversal flaw in onnx.external_data_helper.save_external_data that lets an attacker overwrite arbitrary files by crafted external_data.location traversal sequences. Affected component is ONNX 1.17.0; root cause involves directory traversal...

8.8CVSS6.7AI score0.00578EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/22 12:0 a.m.2 views

CVE-2025-51480

Path Traversal vulnerability in onnx.externaldatahelper.saveexternaldata in ONNX 1.17.0 allows attackers to overwrite arbitrary files by supplying crafted externaldata.location paths containing traversal sequences, bypassing intended directory restrictions...

7.2AI score0.00578EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/07/22 12:0 a.m.16 views

CVE-2025-51480

Path Traversal vulnerability in onnx.externaldatahelper.saveexternaldata in ONNX 1.17.0 allows attackers to overwrite arbitrary files by supplying crafted externaldata.location paths containing traversal sequences, bypassing intended directory restrictions...

0.00578EPSS
Exploits1References5
vulnersOsv
vulnersOsv
added 2024/06/06 9:30 p.m.7 views

acetone-nnet (>=0.1.0 <=0.4.0.dev1), acuity (=6.18.0) +173 more potentially affected by CVE-2024-5187 +1 more via onnx (>=0.2.0 <=1.16.1)

onnx PYPI version =0.2.0, =0.1.0, =0.0.0, =0.0.157, =1.3.0, =0.3.1, =1.3.0, =0.0.9, =0.2.19, =0.0.1, =0.1.0, =0.1.4 - autodistill-yolonas =0.1.1 and more Source cves: CVE-2024-5187, CVE-2025-51480 Source advisory: OSV:GHSA-6RQ9-53C3-F7VJ...

8.8CVSS7.2AI score0.01168EPSS
Exploits2
Rows per page
Query Builder