Lucene search
PRIOn knowledge basePRION:CVE-2024-27318HistoryFeb 23, 2024 - 6:15 p.m.
Directory traversal
2024-02-2318:15:00
PRIOn knowledge base
www.prio-n.com
5
onnx
package
vulnerability
directory traversal
external_data field
tensor proto
path
file
Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory. The vulnerability occurs as a bypass for the patch added for CVE-2022-25882.
Related
osv
osv
Onnx Directory Traversal vulnerability
2024-02-23 18:30:59
CVE-2024-27318
2024-02-23 18:15:50
CVE-2022-25882
2023-01-26 21:15:31
nvd
nvd
CVE-2024-27318
2024-02-23 18:15:50
CVE-2022-25882
2023-01-26 21:15:31
cve
cve
CVE-2024-27318
2024-02-23 18:15:50
CVE-2022-25882
2023-01-26 21:15:31
cvelist
cvelist
CVE-2024-27318
2024-02-23 17:37:36
CVE-2022-25882
2023-01-25 05:00:02
github
github
Onnx Directory Traversal vulnerability
2024-02-23 18:30:59
Directory Traversal in onnx
2023-01-26 21:30:25
nessus
nessus
Fedora 39 : onnx (2024-270e3b5e9b)
2024-03-28 00:00:00
Fedora 40 : onnx (2024-abe1e34fdb)
2024-04-29 00:00:00
CBL Mariner 2.0 Security Update: pytorch (CVE-2022-25882)
2023-04-20 00:00:00
cbl_mariner
cbl_mariner
CVE-2024-27318 affecting package pytorch for versions less than 2.0.0-6
2024-05-17 05:57:11
CVE-2022-25882 affecting package pytorch for versions less than 2.0.0-1
2023-04-16 00:49:41
veracode
veracode
Path Traversal
2024-02-28 07:59:14
Directory Traversal
2023-01-31 03:43:00
prion
prion
Directory traversal
2023-01-26 21:15:00
ubuntucve
ubuntucve
CVE-2022-25882
2023-01-26 00:00:00
openvas
openvas
Fedora: Security Advisory for onnx (FEDORA-2024-abe1e34fdb)
2024-03-29 00:00:00
Fedora: Security Advisory for onnx (FEDORA-2024-270e3b5e9b)
2024-03-29 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: onnx-1.14.0-9.fc39
2024-03-29 01:11:37
[SECURITY] Fedora 40 Update: onnx-1.14.1-2.fc40
2024-03-29 00:20:54
