Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-81227
HistoryNov 23, 2022 - 12:00 a.m.

Google TensorFlow has an unspecified vulnerability (CNVD-2022-81227)

2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
14

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

41.4%

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A security vulnerability exists in Google TensorFlow, which stems from a reference kernel for the CONV_3D_TRANSPOSE TensorFlow Lite operator that incorrectly adds data_ptr when adding bias to results. Detailed vulnerability details are not available.

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

41.4%