Lucene search
China National Vulnerability DatabaseCNVD-2022-80685HistoryNov 23, 2022 - 12:00 a.m.
Google TensorFlow code issue vulnerability (CNVD-2022-80685)
2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
google tensorflow
machine learning
vulnerability
logical error
data organization
char to bool conversion
crash
program attack.
EPSS
0.001
Percentile
40.2%
Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A code issue vulnerability exists in Google TensorFlow, which stems from a logical error in the organization of data, where the conversion from char to bool is undefined if the const char* array is not 0 or 1. and therefore sanitizers/fuzzers will crash. An attacker could exploit this vulnerability to crash the program.
Related
prion
prion
Design/Logic Flaw
2022-11-18 22:15:00
cbl_mariner
cbl_mariner
CVE-2022-41911 affecting package tensorflow for versions less than 2.11.0-1
2022-12-09 20:03:11
osv
osv
Invalid char to bool conversion when printing a tensor
2022-11-21 22:18:11
CVE-2022-41911
2022-11-18 22:15:22
BIT-tensorflow-2022-41911
2024-03-06 11:09:55
cvelist
cvelist
cve
cve
CVE-2022-41911
2022-11-18 22:15:22
veracode
veracode
Denial Of Service (DoS)
2022-11-22 04:25:42
github
github
Invalid char to bool conversion when printing a tensor
2022-11-21 22:18:11
nessus
nessus
CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41911)
2023-03-20 00:00:00
TensorFlow < 2.9.3 Multiple Vulnerabilities
2024-05-24 00:00:00
TensorFlow < 2.10.1 Multiple Vulnerabilities
2024-05-20 00:00:00
nvd
nvd
CVE-2022-41911
2022-11-18 22:15:22
