Количество 3
Количество 3
CVE-2024-27318
Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory. The vulnerability occurs as a bypass for the patch added for CVE-2022-25882.
CVE-2024-27318
GHSA-whh8-fjgc-qp73
Onnx Directory Traversal vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-27318 Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory. The vulnerability occurs as a bypass for the patch added for CVE-2022-25882. | CVSS3: 7.5 | 0% Низкий | почти 2 года назад |
 | CVSS3: 7.5 | 0% Низкий | почти 2 года назад | |
| GHSA-whh8-fjgc-qp73 Onnx Directory Traversal vulnerability | CVSS3: 7.5 | 0% Низкий | почти 2 года назад |
Уязвимостей на страницу