CVE-2024-7776

Arbitrary File Overwrite in onnx/onnx

CVSS 8.1 HIGHEPSS 1.4%CWE-22

Vexday Risk Score

21Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 8.1EPSS 1.4%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

20 Mar 2025Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

A vulnerability in the `download_model` function of the onnx/onnx framework, before and including version 1.16.1, allows for arbitrary file overwrite due to inadequate prevention of path traversal attacks in malicious tar files. This vulnerability can be exploited by an attacker to overwrite files in the user's directory, potentially leading to remote command execution.

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

Affected products

onnx · onnx/onnx

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://huntr.com/bounties/a7a46cf6-1fa0-454b-988c-62d222e83f63