Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory, for example "../../../etc/passwd"
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| onnx(PyPI) | 0 | 1.13.0 | N/A |
CVSS Metrics
