A vulnerability in the `download_model` function of the onnx/onnx framework, before and including version 1.16.1, allows for arbitrary file overwrite due to inadequate prevention of path traversal attacks in malicious tar files. This vulnerability can be exploited by an attacker to overwrite files in the user's directory, potentially leading to remote command execution.
References
| Link | Resource |
|---|---|
| https://huntr.com/bounties/a7a46cf6-1fa0-454b-988c-62d222e83f63 | Exploit Third Party Advisory |
| https://huntr.com/bounties/a7a46cf6-1fa0-454b-988c-62d222e83f63 | Exploit Third Party Advisory |
Configurations
History
26 Mar 2025, 17:20
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.1 |
| Summary |
|
|
| First Time |
Onnx onnx
Onnx |
|
| CPE | cpe:2.3:a:onnx:onnx:*:*:*:*:*:*:*:* | |
| References | () https://huntr.com/bounties/a7a46cf6-1fa0-454b-988c-62d222e83f63 - Exploit, Third Party Advisory |
20 Mar 2025, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://huntr.com/bounties/a7a46cf6-1fa0-454b-988c-62d222e83f63 - |
20 Mar 2025, 10:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-03-20 10:15
Updated : 2025-03-26 17:20
NVD link : CVE-2024-7776
Mitre link : CVE-2024-7776
CVE.ORG link : CVE-2024-7776
JSON object : View
Products Affected
onnx
- onnx
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')