CVE-2026-34446 — Path Traversal in Onnx

CWE-22 — Path Traversal CWE-61 — UNIX Symbolic Link (Symlink) Following CWE-41 — Improper Resolution of Path Equivalence9 documents7 sources

Severity

4.7MEDIUMNVD

EPSS

0.0%

top 98.89%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Onnx Debian Onnx Msrc Azl3 Pytorch 2.2.2-12 ON Azure Linux 3.0 +1 more

Timeline

PublishedApr 1

Latest updateApr 2

Description

Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior to version 1.21.0, there is an issue in onnx.load, the code checks for symlinks to prevent path traversal, but completely misses hardlinks because a hardlink looks exactly like a regular file on the filesystem. This issue has been patched in version 1.21.0.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:NExploitability: 1.0 | Impact: 3.6

Affected Packages5 packages

▶CVEListV5onnx/onnx< 1.21.0

▶PyPIonnx/onnx< 1.21.0

▶debiandebian/onnx

▶msrcmsrc/azl3_pytorch_2.2.2-12_on_azure_linux_3.0

▶msrcmsrc/cbl2_pytorch_2.0.0-15_on_cbl_mariner_2.0

🔴Vulnerability Details

OSV

CVE-2026-34446: (Open Neural Network Exchange (ONNX) is an open standard for machine le↗2026-04-02

▶

OSV

CVE-2026-34446: Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability↗2026-04-01

▶

OSV

ONNX: Arbitrary File Read via ExternalData Hardlink Bypass in ONNX load↗2026-04-01

▶

GHSA

ONNX: Arbitrary File Read via ExternalData Hardlink Bypass in ONNX load↗2026-04-01

▶

📋Vendor Advisories

Microsoft

ONNX: Arbitrary File Read via ExternalData Hardlink Bypass in ONNX load↗2026-04-02

▶

Red Hat

onnx: ONNX: Information disclosure through hardlink path traversal↗2026-04-01

▶

Debian

CVE-2026-34446: onnx - Open Neural Network Exchange (ONNX) is an open standard for machine learning int...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-34446 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶