Browse all 9 CVE security advisories affecting onnx. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ONNX serves as an open format for machine learning models, enabling interoperability across frameworks. Historically, vulnerabilities have included remote code execution, buffer overflows, and improper input validation, often stemming from insecure parsing of model files. While no major public incidents have been widely documented, the 9 recorded CVEs highlight potential risks in model processing and serialization. Security characteristics include reliance on third-party runtime environments and dependencies, which may introduce additional attack surfaces. Proper validation of untrusted models remains critical to prevent exploitation, as malformed inputs could lead to arbitrary code execution or system compromise.
CVE-2024-9152026-04-02CVE-2024-274002026-04-02CVE-2024-344472026-04-02Showing up to 20 recent security advisories. View all →
This page lists every published CVE security advisory associated with onnx. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.