Bounties
Partners
Community
Info
onnx / onnx
Project repository
Open standard for machine learning interoperability
Submit a report
FIRST INTERACTION
WITHIN
N/A DAYS
REVIEW
WITHIN
18 DAYS
FIX
WITHIN
N/A DAYS
Arbitrary file overwrite in onnx.model_container.ModelContainer.save() via symli...
Apr 10th 2026
9to5ai
•
self closed
CWE-190: Integer Overflow in Dimension Multiplication Helpers Affects Flatten, T...
Apr 4th 2026
marchantdev
•
self closed
Integer Overflow in Reshape Shape Inference Produces Incorrect Dimensions (CWE-1...
Apr 4th 2026
marchantdev
•
self closed
Path traversal safety check bypass in _tar_members_filter() due to unsafe starts...
Mar 16th 2026
elucidator-hky
•
self closed
ONNX Path Traversal via startswith Prefix Collision. Sorry its supposed to be M...
Mar 12th 2026
williamzero9
•
self closed
Multiple Path Traversal Bypasses in ONNX: external_data symlink escape and tar e...
Mar 3rd 2026
4ur0n
•
duplicate
High
Integer Overflow in onnx::ParseData leading to Denial of Service
Mar 1st 2026
sn1r
•
self closed
Path Traversal in convert_model_to_external_data
Feb 27th 2026
kai-agent
•
duplicate
High
Arbitrary File Read via ExternalData Hardlink Bypass in ONNX load
Feb 24th 2026
zeroxjacks
•
duplicate
Medium
Hub Path Traversal via Manifest
Feb 24th 2026
rezaduty
•
duplicate
Medium
Arbitrary File Read via ExternalData Hardlink Bypass in onnx.load
Feb 22nd 2026
zeroxjacks
•
duplicate
Medium
Arbitrary File Write via Symlink Bypass in save_external_data
Feb 16th 2026
alielgendy-software
•
duplicate
High
ONNX Path Validation Bypass in External Data Loading
Feb 22nd 2026
alielgendy-software
•
duplicate
Medium
ONNX external_data_helper Arbitrary File Write via Path Traversal
Feb 1st 2026
mia-718ai
•
duplicate
High
Path Traversal in save_external_data Allows Arbitrary File Write via Crafted ONN...
Feb 1st 2026
jhacksman
•
duplicate
Medium
Heap Buffer Overflow in ParseData() via Integer Division Truncation
Jan 30th 2026
spamblue890-oss
•
duplicate
High
Arbitrary File Read via Symlink Following in External Data Loading
Feb 1st 2026
nikshacks
•
duplicate
Medium
Path Traversal in ONNX Hub Manifest Allows Arbitrary File Write
Jan 18th 2026
alan-tiger
•
duplicate
High
Unsafe raw_data Handling in Tensor::data<T>() Allows Out-of-Bounds Access via Ma...
Jan 18th 2026
hyperps
•
self closed
No symlinks bypass in external data validation allowing arbitrary file read via...
Feb 1st 2026
f00dat
•
duplicate
High
Denial of Service in ONNX Runtime via Unbounded Memory Allocation during Expand...
Mar 27th 2026
aldorizona10-glitch
•
pending
Stack Overflow DoS via Unbounded Recursion in ONNX Model Processing
Mar 22nd 2026
vitalysim
•
pending
Heap overflow
Dec 25th 2025
shemshallah
•
pending
ONNX Runtime does not validate dimensional consistency of tensors i
Dec 25th 2025
shemshallah
•
pending
Unsafe use of PyTorch torch.load() in ONNX can lead to Arbitrary Code Execution...
Apr 1st 2026
ko7-dev
•
self closed
ONNX Path Traversal
Oct 24th 2025
elexs1zz
•
pending
Command Injection
Jun 24th 2025
loaymorad
•
pending
Exploit ONNX Net Drawer via doc_string injection
May 20th 2025
meme-dm
•
pending
Arbitary File Overwrite in save_external_data
Apr 16th 2025
michealkeines
•
pending
File Creation Vulnerability with Potential Race Condition
Apr 14th 2025
hope4real
•
pending
Lack of Error Handling for Malformed Input in ONNX Model/Node Check
Apr 11th 2025
tugar2003
•
pending
Arbitrary File Overwrite in onnx/backend/test/runner/download_model in onnx/onnx
Oct 9th 2024
arashimu
•
High
•
$750
High
•
$750
•
CVE-2024-7776
CVE-2024-7776
RCE via Documentation Updates
Jun 17th 2024
avivkeller
•
informative
Critical
Arbitrary File Overwrite in download_model_with_test_data
May 23rd 2024
sunrisexu
•
High
•
$750
High
•
$750
•
CVE-2024-5187
CVE-2024-5187
[https://github.com/onnx/onnx] Source repository compromise via GitHub actions w...
Feb 13th 2024
arunstar
•
informative
Critical
CRITICAL
$1500
HIGH
$750
MEDIUM
$125
LOW
$20
