Lucene search
China National Vulnerability DatabaseCNVD-2022-87258HistoryNov 23, 2022 - 12:00 a.m.
Google TensorFlow tf.raw_ops.ImageProjectiveTransformV2 buffer overflow vulnerability
2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
google tensorflow
buffer overflow
imageprojectivetransformv2
vulnerability
validation
attacker
exploit
cnvd.
0.001 Low
EPSS
Percentile
43.6%
Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A buffer overflow vulnerability exists in versions of Google TensorFlow prior to 2.8.4, 2.9.0 and later, and prior to 2.9.3, which originates from “tf.raw_ops. ImageProjectiveTransformV2” lacks proper validation of user-supplied data, which could be exploited by an attacker to potentially cause a buffer overflow.
| CPE | Name | Operator | Version |
|---|---|---|---|
| google tensorflow >=2.9.0, | lt | 2.9.3 | |
| google tensorflow | le | 2.8.4 |
Related
nessus
nessus
CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41886)
2023-03-20 00:00:00
TensorFlow < 2.9.3 Multiple Vulnerabilities
2024-05-24 00:00:00
TensorFlow < 2.10.1 Multiple Vulnerabilities
2024-05-20 00:00:00
osv
osv
CVE-2022-41886
2022-11-18 22:15:14
Overflow in `ImageProjectiveTransformV2`
2022-11-21 20:40:55
BIT-tensorflow-2022-41886
2024-03-06 11:11:24
veracode
veracode
Denial Of Service (DoS)
2022-11-23 04:40:21
cbl_mariner
cbl_mariner
CVE-2022-41886 affecting package tensorflow for versions less than 2.11.0-1
2022-12-09 20:03:11
cvelist
cvelist
CVE-2022-41886 Overflow in `ImageProjectiveTransformV2` in Tensorflow
2022-11-18 00:00:00
nvd
nvd
CVE-2022-41886
2022-11-18 22:15:14
cve
cve
CVE-2022-41886
2022-11-18 22:15:14
prion
prion
Stack overflow
2022-11-18 22:15:00
github
github
Overflow in `ImageProjectiveTransformV2`
2022-11-21 20:40:55
