Lucene search
+L

4 matches found

osv
osv
added 2026/04/01 5:30 p.m.2 views

CVE-2026-34445 ONNX: Malicious ONNX models can crash servers by exploiting unprotected object settings.

Open Neural Network Exchange ONNX is an open standard for machine learning interoperability. Prior to version 1.21.0, the ExternalDataInfo class in ONNX was using Python’s setattr function to load metadata like file paths or data lengths directly from an ONNX model file. It didn’t check if the...

8.6CVSS5.9AI score0.00288EPSS
Exploits0References5
debiancve
debiancve
added 2026/04/01 5:30 p.m.6 views

CVE-2026-34445

Open Neural Network Exchange ONNX is an open standard for machine learning interoperability. Prior to version 1.21.0, the ExternalDataInfo class in ONNX was using Python’s setattr function to load metadata like file paths or data lengths directly from an ONNX model file. It didn’t check if the...

8.6CVSS5.2AI score0.00288EPSS
Exploits0
osv
osv
added 2020/11/26 11:15 a.m.4 views

DEBIAN-CVE-2020-7778

This affects the package systeminformation before 4.30.2. The attacker can overwrite the properties and functions of an object, which can lead to executing OS commands...

7.3CVSS7.1AI score0.02393EPSS
Exploits1References1
veracode
veracode
added 2020/10/30 3:59 a.m.257 views

Prototype Pollution

chart.js is vulnerable to prototype pollution. The vulnerability exists through the lack of sanitization of the options parameter, allowing an attacker to inject and overwrite arbitrary properties...

9.8CVSS4AI score0.04678EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder