| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-34447 | ONNX: External Data Symlink Traversal | onnx | onnx | Medium | 5.5 | 2026-04-01 17:39:38 | Deep Dive |
| CVE-2026-34446 | ONNX: Arbitrary File Read via ExternalData Hardlink Bypass in ONNX load | onnx | onnx | Medium | 4.7 | 2026-04-01 17:37:55 | Deep Dive |
| CVE-2026-27489 | ONNX: Path Traversal via Symlink | onnx | onnx | - | - | 2026-04-01 17:33:51 | Deep Dive |
| CVE-2026-34445 | ONNX: Malicious ONNX models can crash servers by exploiting unprotected object settings. | onnx | onnx | High | 8.6 | 2026-04-01 17:30:20 | Deep Dive |
| CVE-2026-28500 | ONNX Untrusted Model Repository Warnings Suppressed by silent=True in onnx.hub.load() — Silent Supply-Chain Attack | onnx | onnx | High | 8.6 | 2026-03-18 01:15:08 | Deep Dive |
| CVE-2024-7776 | Arbitrary File Overwrite in onnx/onnx | onnx | onnx/onnx | 高危 | - | 2025-03-20 10:10:59 | Deep Dive |
| CVE-2024-5187 | Arbitrary File Overwrite in download_model_with_test_data in onnx/onnx | onnx | onnx/onnx | - | - | 2024-06-06 18:45:19 | Deep Dive |
| CVE-2024-27319 | Open Neural Network Exchange 缓冲区错误漏洞 | onnx | onnx | Medium | 4.4 | 2024-02-23 17:39:53 | Deep Dive |
| CVE-2024-27318 | Open Neural Network Exchange 安全漏洞 | onnx | onnx | High | 7.5 | 2024-02-23 17:37:37 | Deep Dive |
| CVE-2022-25882 | Open Neural Network Exchange 路径遍历漏洞 | - | onnx | High | 7.5 | 2023-01-25 05:00:03 | Deep Dive |