CVE-2024-7776: Open Neural Network Exchange (ONNX) Path Traversal Vulnerability
8.1
CVSS Score
3.0
Basic Information
CVE ID
GHSA ID
EPSS Score
0.68974%
CWE
Published
3/20/2025
Updated
3/21/2025
KEV Status
No
Technology
Python
Technical Details
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| onnx | pip |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The vulnerability stems from insecure tar file extraction patterns. The commit diff shows:
- In
onnx/backend/test/runner/__init__.py, the originaltarfile.open().extractall()was replaced with_extract_model_safe, indicating the former lacked path traversal checks. - In
onnx/hub.py, the removal of the_tar_members_filterfunction and replacement with_extract_model_safesuggests the original filter was either incomplete or improperly applied. Both functions handled model downloads/extractions and were directly modified in the security patch to address CWE-22.