Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory. The vulnerability occurs as a bypass for the patch added for CVE-2022-25882.

Affected Packages

PyPI onnx

Affected versions: 0 (fixed in 1.16.0)

Related CVEs

CVE-2024-27318

Key Information

GHSA ID

GHSA-whh8-fjgc-qp73

Published

February 23, 2024 6:30 PM

Last Modified

February 13, 2025 7:11 PM

CVSS Score

7.5 /10

Primary Ecosystem

PyPI

Primary Package

onnx

GitHub Reviewed

✓ Yes

Dataset

Last updated: November 26, 2025 6:30 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.