CVE-2026-34445HIGH 8.6EPSS p20.3%

CVE-2026-34445CVE-2026-34445

Description

Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior to version 1.21.0, the ExternalDataInfo class in ONNX was using Python’s setattr() function to load metadata (like file paths or data lengths) directly from an ONNX model file. It didn’t check if the "keys" in the file were valid. Due to this, an attacker could craft a malicious model that overwrites internal object properties. This issue has been patched in version 1.21.0.

Scoring

CVSS 3.18.6 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
EPSS0.29% probability of exploitation · percentile 20.3% · 2026-06-19T12:03:05Z
Published2026-04-01
Last modified2026-04-15

Underlying weaknesses· 3

CWE-20CWE-400CWE-915

References

  1. https://github.com/onnx/onnx/commit/e30c6935d67cc3eca2fa284e37248e7c0036c46b
  2. https://github.com/onnx/onnx/pull/7751
  3. https://github.com/onnx/onnx/security/advisories/GHSA-538c-55jv-c5g9

3

TypeTargetConfidenceTier
WeaknessImproper Input Validationcwe-200%live
WeaknessUncontrolled Resource Consumptioncwe-4000%live
WeaknessImproperly Controlled Modification of Dynamically-Determined Object Attributescwe-9150%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-51480
CVE
CVE-2026-28500
CVE
CVE-2026-11329
CVE
CVE-2025-49655
CVE
CVE-2026-31218
CVE
CVE-2026-31219
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.