CVE-2026-44512

Severity CVSS v4.0:
Pending analysis
Type:
CWE-476 NULL Pointer Dereference
Publication date:
08/07/2026
Last modified:
13/07/2026

Description

Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. From 1.9.0 before 1.22.0, onnx.version_converter.convert_version() can dereference a null pointer in Upsample_6_7::adapt_upsample_6_7() in onnx/version_converter/adapters/upsample_6_7.h when processing an untrusted model with an Upsample node that has zero inputs, causing an unrecoverable denial of service. This issue is fixed in version 1.22.0.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:linuxfoundation:onnx:*:*:*:*:*:*:*:* 1.9.0 (including) 1.22.0 (excluding)