CVE-2026-11329 in onnx-mlirinfo

Summary

by MITRE • 06/05/2026

A vulnerability has been found in onnx onnx-mlir up to 0.5.0.0. Affected by this issue is the function generate_hash_key of the file src/Runtime/python/torch_onnxmlir/src/torch_onnxmlir/backend.py of the component Placeholder Node Cache Handler. Such manipulation leads to use of weak hash. An attack has to be approached locally. A high complexity level is associated with this attack. The exploitation is known to be difficult. The name of the patch is 72c5187ff6d13c2c2b3d3789b8f5faf99f08a5b4. Applying a patch is advised to resolve this issue.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

06/05/2026

Moderation

accepted

Entry

VDB-368865

CPE

ready

CWE

CWE-328 (confirmed)

CVSS

3.6 (VulDB)

EPSS

0.00000

KEV

Activities

low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-11329
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-11329
CVE Details	https://www.cvedetails.com/cve/CVE-2026-11329/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!