漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
ONNX: Path Traversal via Symlink
Vulnerability Description
Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior to version 1.21.0, a path traversal vulnerability via symlink allows to read arbitrary files outside model or user-provided directory. This issue has been patched in version 1.21.0.
CVSS Information
N/A
Vulnerability Type
相对路径遍历
Vulnerability Title
Open Neural Network Exchange(ONNX) 安全漏洞
Vulnerability Description
Open Neural Network Exchange(ONNX)是一个开放的生态系统,它使 AI 开发人员能够随着项目的发展选择合适的工具。 Open Neural Network Exchange (ONNX) 1.21.0之前版本存在安全漏洞,该漏洞源于通过符号链接进行路径遍历,可能导致读取模型或用户提供目录之外的任意文件。
CVSS Information
N/A
Vulnerability Type
N/A