Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-87257
HistoryNov 23, 2022 - 12:00 a.m.

Google TensorFlow tf.raw_ops.FusedResizeAndPadConv2D buffer overflow vulnerability

2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
google tensorflow
buffer overflow
vulnerability
fusedresizeandpadconv2d
data validation

0.001 Low

EPSS

Percentile

37.0%

Google TensorFlow, an end-to-end open source platform for machine learning from Google, Inc. is vulnerable to a buffer overflow vulnerability in versions prior to 2.7.4, 2.8.0 and later, 2.8.1, 2.9.0 and later, and 2.9.1. FusedResizeAndPadConv2D" lacks proper validation of user-supplied data, which can be exploited to cause a buffer overflow.

0.001 Low

EPSS

Percentile

37.0%