onnx vulnerability

About this tag
The ONNX vulnerability tag covers a critical path-traversal flaw in ONNX 1.17.0's external data handler, specifically in onnx.external_data_helper.save_external_data. This vulnerability allows crafted external_data.location values to escape their intended storage directory and overwrite arbitrary files on disk, producing high-severity integrity and availability consequences for systems that parse untrusted ONNX model artifacts. ONNX (Open Neural Network Exchange) is a widely used open format and runtime ecosystem for exchanging and operating ML models across frameworks. The tag focuses on security issues in ONNX, particularly CVE-2025 path traversal, and is relevant for developers, security researchers, and IT professionals managing ML pipelines that rely on ONNX.
  1. ONNX CVE 2025 Path Traversal in External Data (1.17.0)

    A critical path‑traversal flaw in ONNX 1.17.0’s external data handler — specifically in onnx.external_data_helper.save_external_data — allows crafted external_data.location values to escape their intended storage directory and overwrite arbitrary files on disk, producing high‑severity integrity...