Lucene search
K
LinuxfoundationOnnx

10 matches found

CVE
CVE
added 2024/02/23 5:37 p.m.437 views

CVE-2024-27318

CVE-2024-27318 affects the ONNX package: versions up to and including 1.15.0 are vulnerable to a Directory Traversal in the external_data field of the tensor proto, which can reference files outside the model directory or user-provided directory. The issue is described as a bypass of the patch fo...

7.5CVSS7.6AI score0.01189EPSS
CVE
CVE
added 2024/02/23 5:39 p.m.303 views

CVE-2024-27319

CVE-2024-27319 affects the ONNX package: versions 1.15.0 and earlier are vulnerable due to an off-by-one string copy in ONNX_ASSERT/ONNX_ASSERTM, causing an out-of-bounds read. Connected advisories confirm the issue across multiple platforms and note remediation by upgrading ONNX (e.g., IBM’s adv...

9.1CVSS6.7AI score0.00594EPSS
CVE
CVE
added 2023/01/25 5:0 a.m.98 views

CVE-2022-25882

CVE-2022-25882 affects onnx before 1.13.0, where the external_data field of the tensor proto can contain a path outside the model directory (example: ../../../etc/passwd), enabling directory traversal. This could impact confidentiality. Remediation: upgrade to onnx 1.13.0 or later. The provided d...

7.5CVSS7.3AI score0.01608EPSS
CVE
CVE
added 2024/06/06 6:45 p.m.94 views

CVE-2024-5187

CVE-2024-5187 affects onnx/onnx 1.16.0: download_model_with_test_data allows path traversal during tar extraction, enabling arbitrary file overwrites (e.g., /home/kali/.ssh/authorized_keys) and potential remote code execution. Connected Nessus entry notes exposure on Azure Linux due to older PyTo...

8.8CVSS8.8AI score0.01168EPSS
CVE
CVE
added 2026/04/01 5:30 p.m.32 views

CVE-2026-34445

CVE-2026-34445 affects ONNX prior to version 1.21.0, where ExternalDataInfo used Python setattr() to load metadata directly from model files without validating keys, enabling a malicious model to overwrite internal object properties. Impact is mainly availability (HIGH) with confidentiality and i...

8.6CVSS5.7AI score0.00288EPSS
CVE
CVE
added 2025/07/22 12:0 a.m.30 views

CVE-2025-51480

A CVE-2025-51480 exists for ONNX 1.17.0 reporting a path traversal flaw in onnx.external_data_helper.save_external_data that lets an attacker overwrite arbitrary files by crafted external_data.location traversal sequences. Affected component is ONNX 1.17.0; root cause involves directory traversal...

8.8CVSS6.7AI score0.00578EPSS
CVE
CVE
added 2026/03/18 1:15 a.m.27 views

CVE-2026-28500

CVE-2026-28500 affects ONNX up to v1.20.1 where onnx.hub.load() bypasses security checks due to flawed repository trust logic. The silent=True flag silences warnings and prompts, enabling a vector for zero-interaction supply-chain attacks. When combined with filesystem vulnerabilities, an attacke...

9.1CVSS5.7AI score0.00318EPSS
CVE
CVE
added 2026/04/01 5:33 p.m.24 views

CVE-2026-27489

CVE-2026-27489: Open Neural Network Exchange (ONNX) prior to 1.21.0 suffers a path-traversal via symlink vulnerability that allows reading files outside the model or user directory. Affected product detail in IBM Watson Speech Services Cartridge (versions 4.0.0–5.3.1); fix is in 5.3.1 Patch 5 (5....

8.7CVSS5.9AI score0.00593EPSS
CVE
CVE
added 2026/04/01 5:37 p.m.17 views

CVE-2026-34446

CVE-2026-34446 affects Open Neural Network Exchange (ONNX). The vulnerability is in onnx.load where hardlinks can bypass the path-traversal check, allowing an arbitrary file read. The issue is fixed in ONNX 1.21.0. Impact is described as arbitrary file read with LOCAL attack vector and MEDIUM bas...

5.5CVSS5.8AI score0.00176EPSS
CVE
CVE
added 2026/04/01 5:39 p.m.16 views

CVE-2026-34447

Onnx ONNX prior to version 1.21.0 has a symlink traversal vulnerability in external data loading that can read files outside the model directory. Affected component: ONNX data loading logic. Root cause: symlink traversal allowing access to restricted files. Impact: potential confidentiality breac...

5.5CVSS5.8AI score0.00248EPSS