CVE-2022-25882Path Traversal in Onnx

CWE-22Path Traversal12 documents5 sources
Severity
7.5HIGHNVD
EPSS
6.0%
top 9.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
OnnxLinuxfoundation OnnxFedoraproject Fedora
Timeline
PublishedJan 26
Latest updateFeb 23

Description

Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory, for example "../../../etc/passwd"

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

CVEListV5onnx/onnx< 1.13.0+1
PyPIonnx/onnx< 1.13.0+4
NVDlinuxfoundation/onnx< 1.16.0+1

Also affects: Fedora 39, 40

Patches

Patch: github.comPatch: github.comPatch: github.com

🔴Vulnerability Details

8
CVEList
CVE-2024-27318: Versions of the package onnx before and including 12024-02-23
OSV
CVE-2024-27318: Versions of the package onnx before and including 12024-02-23
GHSA
Onnx Directory Traversal vulnerability2024-02-23
OSV
Onnx Directory Traversal vulnerability2024-02-23
GHSA
Directory Traversal in onnx2023-01-26

📋Vendor Advisories

2
Microsoft
Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model cur2024-02-13
Microsoft
Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory2023-01-10
CVE-2022-25882 — Path Traversal in Onnx | cvebase