CVE-2024-5187
HIGH8.8EPSS 2.6%onnx allows Arbitrary File Overwrite in download_model_with_test_data
Published: 6/6/2024Modified: 5/21/2026
Description
Path Traversal vulnerability in onnx.external_data_helper.save_external_data in ONNX 1.17.0 allows attackers to overwrite arbitrary files by supplying crafted external_data.location paths containing traversal sequences, bypassing intended directory restrictions.
Affected packages (3)
- Debian/onnxfrom 0, < 1.16.2-1
- PyPI/onnxfrom 0, < 1.16.2
- PyPI/onnxfrom 0, <= 1.17.0
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.8 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
References (14)
- ADVISORYhttps://github.com/advisories/GHSA-6rq9-53c3-f7vj
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2024-5187
- ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2024-5187
- EXPLOIThttps://www.gecko.security/blog/cve-2025-51480
- PATCHhttps://github.com/onnx/onnx
- PATCHhttps://github.com/onnx/onnx/pull/6959
- PATCHhttps://github.com/onnx/onnx/pull/7040
- WEBhttps://github.com/onnx/onnx/commit/1b70f9b673259360b6a2339c4bd97db9ea6e552f
- WEBhttps://github.com/onnx/onnx/commit/3fc3845edb048df559aa2a839e39e95503a0ee34
- WEBhttps://github.com/onnx/onnx/issues/6215
- WEBhttps://github.com/onnx/onnx/pull/6145
- WEBhttps://github.com/onnx/onnx/pull/6222
- WEBhttps://github.com/onnx/onnx/releases/tag/v1.16.2
- WEBhttps://huntr.com/bounties/50235ebd-3410-4ada-b064-1a648e11237e