onnx 1.21.0rc4

Direct Vulnerabilities

Known vulnerabilities in the onnx package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Time-of-check Time-of-use (TOCTOU) Race Condition onnx is an Open Neural Network Exchange Affected versions of this package are vulnerable to Time-of-check Time-of-use (TOCTOU) Race Condition through the `save_external_data` function. An attacker can overwrite arbitrary files or inject data into sensitive locations by exploiting a race condition between file existence checks and file creation, as well as bypassing path validation checks, potentially using symlinks or absolute paths. How to fix Time-of-check Time-of-use (TOCTOU) Race Condition? Upgrade `onnx` to version 1.21.0 or higher.	[,1.21.0)
M Improperly Controlled Modification of Dynamically-Determined Object Attributes onnx is an Open Neural Network Exchange Affected versions of this package are vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes in the `ExternalDataInfo` function. An attacker can cause system unavailability, limited information disclosure, or data alteration by supplying a malicious model that manipulates internal object properties during metadata processing. How to fix Improperly Controlled Modification of Dynamically-Determined Object Attributes? Upgrade `onnx` to version 1.21.0 or higher.	[,1.21.0)
M UNIX Symbolic Link (Symlink) Following onnx is an Open Neural Network Exchange Affected versions of this package are vulnerable to UNIX Symbolic Link (Symlink) Following via the `onnx.load` function. An attacker can access arbitrary files on the filesystem by supplying a malicious model that leverages hardlinks to bypass security checks intended to prevent unauthorized file access. How to fix UNIX Symbolic Link (Symlink) Following? Upgrade `onnx` to version 1.21.0 or higher.	[,1.21.0)
M UNIX Symbolic Link (Symlink) Following onnx is an Open Neural Network Exchange Affected versions of this package are vulnerable to UNIX Symbolic Link (Symlink) Following in the `resolve_external_data_location` function. An attacker can access arbitrary files outside the intended directory by supplying a symlink within the model directory that points to a file elsewhere on the system. This is only exploitable if the attacker can control the contents of the model directory, such as through archives that create symlinks. How to fix UNIX Symbolic Link (Symlink) Following? Upgrade `onnx` to version 1.21.0 or higher.	[,1.21.0)
H UNIX Symbolic Link (Symlink) Following onnx is an Open Neural Network Exchange Affected versions of this package are vulnerable to UNIX Symbolic Link (Symlink) Following through the handling of external data files when symbolic links are present. An attacker can access arbitrary files on the host system by crafting a symlink that points to sensitive files and providing it alongside a model file to a victim, who then loads the model and inadvertently exposes the targeted files. How to fix UNIX Symbolic Link (Symlink) Following? Upgrade `onnx` to version 1.21.0 or higher.	[,1.21.0)
C Resources Downloaded over Insecure Protocol onnx is an Open Neural Network Exchange Affected versions of this package are vulnerable to Resources Downloaded over Insecure Protocol via the `onnx.hub.load` function when the `silent` parameter is set to True. An attacker can bypass repository trust verification and suppress all security warnings and confirmation prompts by exploiting this logic, allowing the download and execution of malicious models from attacker-controlled repositories without user notification. This enables the attacker to exfiltrate sensitive files from the victim's machine upon model loading. How to fix Resources Downloaded over Insecure Protocol? Upgrade `onnx` to version 1.21.0 or higher.	[0,1.21.0)
M Directory Traversal onnx is an Open Neural Network Exchange Affected versions of this package are vulnerable to Directory Traversal via the `save_external_data` function. An attacker can overwrite arbitrary files by supplying crafted values to the `external_data.location` parameter containing traversal sequences, thereby bypassing intended directory restrictions. This could lead to overwriting script files, configuration files, or SSH keys, or corruption of sensitive files based on the permissions of the running process. How to fix Directory Traversal? Upgrade `onnx` to version 1.21.0 or higher.	[0,1.21.0)

Vulnerability

Vulnerable Version

Time-of-check Time-of-use (TOCTOU) Race Condition