pkg:PyPI/onnx

17 total CVEsHIGH12MEDIUM5

✅ Check your installed version

All known vulnerabilities

HIGH8.8CVE-2024-5187onnx allows Arbitrary File Overwrite in download_model_with_test_data
from 0, <= 1.17.0
HIGH8.8CVE-2024-5187onnx allows Arbitrary File Overwrite in download_model_with_test_data
from 0, < 1.16.2
HIGH8.6CVE-2026-34445ONNX: Malicious ONNX models can crash servers by exploiting unprotected object settings.
from 0, < 1.21.0
HIGH8.6CVE-2026-28500ONNX Untrusted Model Repository Warnings Suppressed by silent=True in onnx.hub.load() — Silent Supply-Chain Attack
from 0, < 1.21.0rc1
HIGH8.6CVE-2026-28500ONNX Untrusted Model Repository Warnings Suppressed by silent=True in onnx.hub.load() — Silent Supply-Chain Attack
from 0, < 1.21.0
HIGH8.1CVE-2024-7776Open Neural Network Exchange (ONNX) Path Traversal Vulnerability
from 0, < 1.17.0
HIGH8.1CVE-2024-7776Open Neural Network Exchange (ONNX) Path Traversal Vulnerability
from 0, < 1.16.2
HIGH7.5CVE-2026-27489onnx Vulnerable to Path Traversal via Symlink
from 0, < 1.21.0
HIGH7.5CVE-2024-27318Onnx Directory Traversal vulnerability
from 0, < 66b7fb630903fdcf3e83b6b6d56d82e904264a20, < 66b7fb630903fdcf3e83b6b6d56d82e904264a20 | from 0, < 1.16.0
HIGH7.5CVE-2024-27318Onnx Directory Traversal vulnerability
from 0, < 1.16.0
HIGH7.5CVE-2022-25882Directory Traversal in onnx
from 0, < f369b0e859024095d721f1d1612da5a8fa38988d | from 0, < 1.13.0
HIGH7.5CVE-2022-25882Directory Traversal in onnx
from 0, < 1.13.0
MEDIUM5.5CVE-2026-34447ONNX: External Data Symlink Traversal
from 0, < 1.21.0
MEDIUM5.5CVE-2026-34447ONNX: External Data Symlink Traversal
from 0, < 1.21.0
MEDIUM4.7CVE-2026-34446ONNX: Arbitrary File Read via ExternalData Hardlink Bypass in ONNX load
from 0, < 1.21.0
MEDIUM4.4CVE-2024-27319Onnx Out-of-bounds Read vulnerability
from 0, < 08a399ba75a805b7813ab8936b91d0e274b08287, < 08a399ba75a805b7813ab8936b91d0e274b08287 | from 0, < 1.16.0
MEDIUM4.4CVE-2024-27319Onnx Out-of-bounds Read vulnerability
from 0, < 1.16.0