CVE-2024-5187 — Path Traversal in Onnx

CWE-22 — Path Traversal7 documents6 sources

Severity

8.8HIGHNVD

EPSS

1.4%

top 19.84%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Onnx Onnx Onnx Linuxfoundation Onnx

Timeline

PublishedJun 6

Latest updateJun 11

Description

A vulnerability in the `download_model_with_test_data` function of the onnx/onnx framework, version 1.16.0, allows for arbitrary file overwrite due to inadequate prevention of path traversal attacks in malicious tar files. This vulnerability enables attackers to overwrite any file on the system, potentially leading to remote code execution, deletion of system, personal, or application files, thus impacting the integrity and availability of the system. The issue arises from the function's handlin…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages4 packages

▶PyPIonnx/onnx< 1.16.2

▶Debianonnx/onnx< 1.16.2-1+1

▶CVEListV5onnx/onnx_onnxunspecified — latest

▶NVDlinuxfoundation/onnx1.16.0

🔴Vulnerability Details

OSV

CVE-2024-5187: A vulnerability in the `download_model_with_test_data` function of the onnx/onnx framework, version 1↗2024-06-06

▶

GHSA

onnx allows Arbitrary File Overwrite in download_model_with_test_data↗2024-06-06

▶

CVEList

Arbitrary File Overwrite in download_model_with_test_data in onnx/onnx↗2024-06-06

▶

OSV

onnx allows Arbitrary File Overwrite in download_model_with_test_data↗2024-06-06

▶

📋Vendor Advisories

Microsoft

Arbitrary File Overwrite in download_model_with_test_data in onnx/onnx↗2024-06-11

▶

Debian

CVE-2024-5187: onnx - A vulnerability in the `download_model_with_test_data` function of the onnx/onnx...↗2024

▶