MEDIUM 5.5

PYSEC-2026-104

Details

Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior to version 1.21.0, there is a symlink traversal vulnerability in external data loading allows reading files outside the model directory. This issue has been patched in version 1.21.0.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / onnx

Introduced in: 0 Fixed in: 1.21.0

Fix pip install --upgrade 'onnx>=1.21.0'

References

https://github.com/onnx/onnx/security/advisories/GHSA-p433-9wv8-28xj [EVIDENCE]