YAML Metadata Warning:empty or missing yaml metadata in repo card
Check out the documentation for more information.
OpenVINO β Integer Overflow β Bounds Check Bypass
Status: PoC CONFIRMED β β Ready for huntr submission
| Field | Value |
|---|---|
| Target | openvino (huntr.com β openvinotoolkit/openvino) |
| Format | OpenVINO IR .xml + .bin |
| Vuln | CWE-190 β CWE-789 (integer overflow bypasses bounds check) |
| CVSS | 7.5 High |
| Occurrences | 3 (20% bonus each) |
| Trigger | ov.Core().read_model("evil.xml", "evil.bin") β succeeds; .compile_model() β OOM kill |
Quick Repro
python3 poc/make_poc.py # creates evil.xml + evil.bin
python3 poc/trigger.py # read_model succeeds; compile_model OOM-kills
Files
poc/make_poc.pyβ PoC builderpoc/trigger.pyβ crash triggerpoc/evil.xml+poc/evil.binβ malicious model pairreport.mdβ huntr submissionevidence/poc-run.htmlβ self-contained HTML evidence
Key Source Locations
- Primary:
src/core/xml_util/src/xml_deserialize_util.cpp:893β904 - Secondary: same file, lines
819β834(string branch) - Tertiary:
src/plugins/intel_cpu/src/utils/graph_serializer/deserializer.cpp:284β285
Inference Providers NEW
This model isn't deployed by any Inference Provider. π Ask for provider support