AI Threat Alert
ONNX
pip ML Libraries6
Total CVEs
4
Critical
pip
Ecosystem
Mar 18, 2026
Last CVE
Known Vulnerabilities (11 shown)
Severity CVE ID Summary CVSS Published
HIGH GHSA-q56x-g2fj-4rj6 onnx: TOCTOU symlink following enables arbitrary file write 7.1 Apr 1, 2026 MEDIUM CVE-2026-34447 ONNX: symlink traversal reads host files via model loading 5.5 Apr 1, 2026 MEDIUM CVE-2026-34446 ONNX: hardlink path traversal leaks sensitive files 4.7 Apr 1, 2026 HIGH CVE-2026-34445 ONNX: property overwrite via crafted model file 8.6 Apr 1, 2026 UNKNOWN CVE-2026-27489 ONNX: symlink path traversal allows arbitrary file read -- Mar 31, 2026 HIGH CVE-2024-5187 ONNX: path traversal in model download enables RCE 8.8 Jun 6, 2024 HIGH CVE-2024-7776 ONNX: path traversal in download_model enables RCE 8.1 Mar 20, 2025 CRITICAL CVE-2026-28500 onnx: Integrity Verification bypass enables tampering 9.1 Mar 18, 2026 CRITICAL CVE-2026-28500 onnx: Integrity Verification bypass enables tampering 9.1 Mar 18, 2026 CRITICAL CVE-2026-28500 onnx: Integrity Verification bypass enables tampering 9.1 Mar 18, 2026 CRITICAL CVE-2026-28500 onnx: Integrity Verification bypass enables tampering 9.1 Mar 18, 2026 Monitor ONNX in your stack
Get instant alerts when new vulnerabilities affect ONNX. CISO analysis, ATLAS technique mappings, and compliance reports included.
Start Monitoring