CVE-2026-27489 — Relative Path Traversal in Onnx

CWE-23 — Relative Path Traversal CWE-61 — UNIX Symbolic Link (Symlink) Following CWE-22 — Path Traversal9 documents7 sources

Severity

8.7HIGHNVD

EPSS

0.1%

top 79.12%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Onnx Linuxfoundation Onnx

Timeline

PublishedApr 1

Latest updateApr 2

Description

Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior to version 1.21.0, a path traversal vulnerability via symlink allows to read arbitrary files outside model or user-provided directory. This issue has been patched in version 1.21.0.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Packages3 packages

▶CVEListV5onnx/onnx< 1.21.0

▶PyPIonnx/onnx< 1.21.0

▶NVDlinuxfoundation/onnx< 1.21.0

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

CVE-2026-27489: (Open Neural Network Exchange (ONNX) is an open standard for machine le↗2026-04-02

▶

CVEList

ONNX: Path Traversal via Symlink↗2026-04-01

▶

OSV

CVE-2026-27489: Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability↗2026-04-01

▶

GHSA

onnx Vulnerable to Path Traversal via Symlink↗2026-03-31

▶

OSV

onnx Vulnerable to Path Traversal via Symlink↗2026-03-31

▶

📋Vendor Advisories

Red Hat

onnx: ONNX: Information Disclosure via Path Traversal Vulnerability↗2026-04-01

▶

Debian

CVE-2026-27489: onnx - Open Neural Network Exchange (ONNX) is an open standard for machine learning int...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-27489 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶