Lucene search
China National Vulnerability DatabaseCNVD-2023-15775HistoryNov 23, 2022 - 12:00 a.m.
Google TensorFlow Input Validation Error Vulnerability (CNVD-2023-15775)
2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
google
tensorflow
input validation error
vulnerability
rank 2
check failure
sdcaoptimizer
program crash
EPSS
0.001
Percentile
42.0%
Google TensorFlow is an open source platform for machine learning from Google, Inc. An input validation error vulnerability exists in Google TensorFlow, which stems from the fact that entering ‘dense_features’ or ‘example_state_data’ that is not rank 2 will trigger a ‘CHECK’ failure in ‘SdcaOptimizer’. SdcaOptimizer’ in the trigger ‘CHECK’ failure, an attacker can use the vulnerability to cause the program to crash.
Related
osv
osv
`CHECK` fail via inputs in `SdcaOptimizer`
2022-11-21 21:54:26
BIT-tensorflow-2022-41899
2024-03-06 11:10:36
CVE-2022-41899
2022-11-18 22:15:19
prion
prion
Stack overflow
2022-11-18 22:15:00
cvelist
cvelist
CVE-2022-41899 `CHECK` fail via inputs in `SdcaOptimizer` in Tensorflow
2022-11-18 00:00:00
github
github
`CHECK` fail via inputs in `SdcaOptimizer`
2022-11-21 21:54:26
cbl_mariner
cbl_mariner
CVE-2022-41899 affecting package tensorflow for versions less than 2.11.0-1
2022-12-09 20:03:11
nvd
nvd
CVE-2022-41899
2022-11-18 22:15:19
veracode
veracode
Denial Of Service (DoS)
2022-11-22 10:57:07
nessus
nessus
CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41899)
2023-03-20 00:00:00
TensorFlow < 2.9.3 Multiple Vulnerabilities
2024-05-24 00:00:00
TensorFlow < 2.10.1 Multiple Vulnerabilities
2024-05-20 00:00:00
cve
cve
CVE-2022-41899
2022-11-18 22:15:19
