Description
A vulnerability has been found in onnx onnx-mlir up to 0.5.0.0. Affected by this issue is the function generate_hash_key of the file src/Runtime/python/torch_onnxmlir/src/torch_onnxmlir/backend.py of the component Placeholder Node Cache Handler. Such manipulation leads to use of weak hash. An attack has to be approached locally. A high complexity level is associated with this attack. The exploitation is known to be difficult. The name of the patch is 72c5187ff6d13c2c2b3d3789b8f5faf99f08a5b4. Applying a patch is advised to resolve this issue.
Published: 2026-06-05
Score: 2 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An issue in onnx-mlir, affecting versions up to 0.5.0.0, allows local attackers to influence the placeholder node cache by abusing a weak hash function called generate_hash_key. Because the hash algorithm is insecure, an attacker could deliberately generate a hash collision or manipulate cache entries, potentially leading to incorrect computation results or covert data tampering. The weakness is a direct result of improper cryptographic key management, classified as CWE-327 and added complexity for weak cryptographic, and the attack requires local access, limiting its impact to environments where the attacker has file system or runtime permissions.

Affected Systems

The vulnerability is confined to the onnx-mlir library, as identified by the vendor onnx:onnx-mlir. All releases up to 0.5.0.0 are affected. Attackers who can execute code within the environment where onnx-mlir is installed can trigger the vulnerable code path. No other product or version combinations are mentioned in the CVE data.

Risk and Exploitability

The CVSS score of 2 indicates a low severity, and the EPSS score is not available, suggesting little evidence of widespread exploitation. The vulnerability is listed as not being in the CISA known exploited vulnerabilities catalog. Exploitation requires a local foothold and is technically challenging; a high complexity level is noted. Thus, the overall risk remains low for most deployments, though organizations that strongly rely on the integrity of the placeholder node cache should treat it as a distance-coupled discrete patchable issue rather than an immediate threat.

Generated by OpenCVE AI on June 5, 2026 at 13:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the official patch by applying commit 72c5187ff6d13c2c2b3d3789b8f5faf99f08a5b4 to the onnx-mlir codebase.
  • Replace the weak generate_hash_key implementation with a secure hash algorithm such as SHA-256 or a cryptographic library.
  • Limit local processes that can modify the Placeholder Node Cache to trusted users or running them in a sandbox to reduce the local attack surface.

Generated by OpenCVE AI on June 5, 2026 at 13:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 08 Jun 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 05 Jun 2026 12:45:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in onnx onnx-mlir up to 0.5.0.0. Affected by this issue is the function generate_hash_key of the file src/Runtime/python/torch_onnxmlir/src/torch_onnxmlir/backend.py of the component Placeholder Node Cache Handler. Such manipulation leads to use of weak hash. An attack has to be approached locally. A high complexity level is associated with this attack. The exploitation is known to be difficult. The name of the patch is 72c5187ff6d13c2c2b3d3789b8f5faf99f08a5b4. Applying a patch is advised to resolve this issue.
Title onnx onnx-mlir Placeholder Node Cache backend.py generate_hash_key weak hash
First Time appeared Onnx
Onnx onnx-mlir
Weaknesses CWE-327
CWE-328
CPEs cpe:2.3:a:onnx:onnx-mlir:*:*:*:*:*:*:*:*
Vendors & Products Onnx
Onnx onnx-mlir
References
Metrics cvssV2_0

{'score': 2.4, 'vector': 'AV:L/AC:H/Au:S/C:N/I:P/A:P/E:ND/RL:OF/RC:C'}

cvssV3_0

{'score': 3.6, 'vector': 'CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:X/RL:O/RC:C'}

cvssV3_1

{'score': 3.6, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L/E:X/RL:O/RC:C'}

cvssV4_0

{'score': 2, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X'}

Subscriptions

Onnx Onnx-mlir
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-08T17:03:42.507Z

Reserved: 2026-06-05T06:43:25.150Z

Link: CVE-2026-11329

cve-icon Vulnrichment

Updated: 2026-06-08T17:03:08.344Z

cve-icon NVD

Status : Deferred

Published: 2026-06-05T13:16:38.343

Modified: 2026-06-05T13:26:42.027

Link: CVE-2026-11329

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-05T15:15:26Z

Weaknesses
  • CWE-327

    Use of a Broken or Risky Cryptographic Algorithm

  • CWE-328

    Use of Weak Hash