AZL-50635

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-50635.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-50635

Upstream

CVE-2024-5187

Published

2024-06-06T19:16:06Z

Modified

2026-04-21T04:30:19.489741Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

CVE-2024-5187 affecting package pytorch for versions less than 2.2.2-3

Details

A vulnerability in the download_model_with_test_data function of the onnx/onnx framework, version 1.16.0, allows for arbitrary file overwrite due to inadequate prevention of path traversal attacks in malicious tar files. This vulnerability enables attackers to overwrite any file on the system, potentially leading to remote code execution, deletion of system, personal, or application files, thus impacting the integrity and availability of the system. The issue arises from the function's handling of tar file extraction without performing security checks on the paths within the tar file, as demonstrated by the ability to overwrite the /home/kali/.ssh/authorized_keys file by specifying an absolute path in the malicious tar file.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-5187

Affected packages

Azure Linux:3 / pytorch

Package

Name: pytorch
Purl: pkg:rpm/azure-linux/pytorch

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.2-3

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-50635.json"