Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-seht-766r-kke7
SummaryPath Traversal vulnerability in onnx.external_data_helper.save_external_data in ONNX 1.17.0 allows attackers to overwrite arbitrary files by supplying crafted external_data.location paths containing traversal sequences, bypassing intended directory restrictions.
Aliases
0
alias CVE-2025-51480
1
alias GHSA-6rq9-53c3-f7vj
2
alias PYSEC-2025-148
Fixed_packages
Affected_packages
References
0
reference_url https://github.com/advisories/GHSA-6rq9-53c3-f7vj
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://github.com/advisories/GHSA-6rq9-53c3-f7vj
1
reference_url https://github.com/onnx/onnx
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://github.com/onnx/onnx
2
reference_url https://github.com/onnx/onnx/pull/6959
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://github.com/onnx/onnx/pull/6959
3
reference_url https://github.com/onnx/onnx/pull/7040
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://github.com/onnx/onnx/pull/7040
4
reference_url https://www.gecko.security/blog/cve-2025-51480
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://www.gecko.security/blog/cve-2025-51480
Weaknesses
Exploits
Severity_range_score8.8 - 8.8
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-seht-766r-kke7