Miggo Logo
Miggo Vulnerability Database
CVE-2024-7776

CVE-2024-7776: Open Neural Network Exchange (ONNX) Path Traversal Vulnerability

8.1

CVSS Score
3.0

Basic Information

CVE ID
CVE-2024-7776
GHSA ID
GHSA-h36j-8vv3-cj52
EPSS Score
0.68974%
CWE
CWE-22
Published
3/20/2025
Updated
3/21/2025
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
onnxpip

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from insecure tar file extraction patterns. The commit diff shows:

  1. In onnx/backend/test/runner/__init__.py, the original tarfile.open().extractall() was replaced with _extract_model_safe, indicating the former lacked path traversal checks.
  2. In onnx/hub.py, the removal of the _tar_members_filter function and replacement with _extract_model_safe suggests the original filter was either incomplete or improperly applied. Both functions handled model downloads/extractions and were directly modified in the security patch to address CWE-22.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* vuln*r**ility in t** `*ownlo**_mo**l` *un*tion o* t** onnx/onnx *r*m*work, ***or* *n* in*lu*in* v*rsion *.**.*, *llows *or *r*itr*ry *il* ov*rwrit* *u* to in***qu*t* pr*v*ntion o* p*t* tr*v*rs*l *tt**ks in m*li*ious t*r *il*s. T*is vuln*r**ility **

Reasoning

T** vuln*r**ility st*ms *rom ins**ur* t*r *il* *xtr**tion p*tt*rns. T** *ommit *i** s*ows: *. In `onnx/***k*n*/t*st/runn*r/__init__.py`, t** ori*in*l `t*r*il*.op*n().*xtr**t*ll()` w*s r*pl**** wit* `_*xtr**t_mo**l_s***`, in*i**tin* t** *orm*r l**k**