Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveGitHub_MCVE-2020-5215
HistoryJan 28, 2020 - 10:15 p.m.

CVE-2020-5215

2020-01-2822:15:11
CWE-754
CWE-20
GitHub_M
web.nvd.nist.gov
117
2
tensorflow
cve-2020-5215
security vulnerability
segmentation fault
denial of service
inference
training
malicious attacker
data point
saved models
checkpoints
automatic conversions

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.1

Confidence

High

EPSS

0.004

Percentile

72.4%

JSON

In TensorFlow before 1.15.2 and 2.0.1, converting a string (from Python) to a tf.float16 value results in a segmentation fault in eager mode as the format checks for this use case are only in the graph mode. This issue can lead to denial of service in inference/training where a malicious attacker can send a data point which contains a string instead of a tf.float16 value. Similar effects can be obtained by manipulating saved models and checkpoints whereby replacing a scalar tf.float16 value with a scalar string will trigger this issue due to automatic conversions. This can be easily reproduced by tf.constant(“hello”, tf.float16), if eager execution is enabled. This issue is patched in TensorFlow 1.15.1 and 2.0.1 with this vulnerability patched. TensorFlow 2.1.0 was released after we fixed the issue, thus it is not affected. Users are encouraged to switch to TensorFlow 1.15.1, 2.0.1 or 2.1.0.

Affected configurations

Nvd
Vulners
Node
googletensorflowRange<1.15.2
OR
googletensorflowRange2.0.02.0.1
VendorProductVersionCPE
googletensorflow*cpe:2.3:a:google:tensorflow:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "TensorFlow",
    "vendor": "TensorFlow",
    "versions": [
      {
        "status": "affected",
        "version": "< 1.15.2"
      },
      {
        "status": "affected",
        "version": "= 2.0.0"
      }
    ]
  }
]

Social References

More

Related

osv 6
ibm 3
prion 1
veracode 1
nvd 1
cvelist 1
github 1
osv
osv
Segmentation faultin TensorFlow when converting a Python string to `tf.float16`
2020-01-28 21:32:29
CVE-2020-5215
2020-01-28 22:15:11
BIT-tensorflow-2020-5215
2024-03-06 11:20:11
ibm
ibm
Security Bulletin: A security vulnerability has been identified in TensorFlow shipped with PowerAI.
2020-03-01 18:02:45
Security Bulletin: Tensor Flow security vulnerabilities with segmentation fault on IBM Watson Machine Learning on CP4D
2021-05-03 15:09:41
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in TensorFlow
2020-06-19 05:12:06
prion
prion
Format string
2020-01-28 22:15:00
veracode
veracode
Denial Of Service (DoS)
2020-01-29 05:37:51
nvd
nvd
CVE-2020-5215
2020-01-28 22:15:11
cvelist
cvelist
CVE-2020-5215 Segmentation faultin TensorFlow when converting a Python string to tf.float16
2020-01-28 21:20:15
github
github
Segmentation faultin TensorFlow when converting a Python string to `tf.float16`
2020-01-28 21:32:29

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.1

Confidence

High

EPSS

0.004

Percentile

72.4%

JSON
Related for CVE-2020-5215
osv6ibm3prion1veracode1nvd1cvelist1github1