CVE-2026-44512 with a CVSS score of 5.5 is a vulnerability in ONNX that allows an attacker to trigger a null pointer dereference in the Upsample Version Converter Adapter when processing a model with an Upsample node that has zero inputs, leading to an unrecoverable crash (SIGSEGV) and potentially allowing access to sensitive information. This flaw type can be exploited via the environment template management API by sending a specially crafted ONNX model that triggers the null pointer dereference in the adapter, resulting in a SIGSEGV error. The business impact of this vulnerability is significant, as any application that uses onnx.version_converter.convert_version on untrusted models is vulnerable, including model conversion pipelines and tools that auto-upgrade opset versions for compatibility. Affected versions include >= 1.9.0, < 1.22.0.
We recommend you to update ONNX to version 1.22.0.[/subscribe_to_unlock_form]
CVE-2026-44512 with a CVSS score of 5.5 is a vulnerability in ONNX that allows an attacker to trigger a null pointer dereference in the Upsample Version Converter Adapter when processing a model with an Upsample node that has zero inputs, leading to an unrecoverable crash (SIGSEGV) and potentially allowing access to sensitive information. This flaw type can be exploited via the environment template management API by sending a specially crafted ONNX model that triggers the null pointer dereference in the adapter, resulting in a SIGSEGV error. The business impact of this vulnerability is significant, as any application that uses onnx.version_converter.convert_version on untrusted models is vulnerable, including model conversion pipelines and tools that auto-upgrade opset versions for compatibility. Affected versions include >= 1.9.0, < 1.22.0.
We recommend you to update ONNX to version 1.22.0.[emaillocker id="1283"]
The following reports contain further technical details:
[/emaillocker]