CVE-2023-25666

🗓️ 25 Mar 2023 00:07:15Reported by GitHub_MType

TensorFlow prior to 2.12.0 and 2.11.1 allows floating point exception in AudioSpectrogram

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 20
NVD	CVE-2023-25666	25 Mar 202300:15	–	nvd
CBLMariner	CVE-2023-25666 affecting package tensorflow for versions less than 2.11.1-1	15 Oct 202308:09	–	cbl_mariner
CBLMariner	CVE-2023-25666 affecting package tensorflow for versions less than 2.11.1-1	31 Jan 202516:08	–	cbl_mariner
Veracode	Denial Of Service (DoS)	30 Mar 202308:56	–	veracode
Vulnrichment	CVE-2023-25666 TensorFlow has Floating Point Exception in AudioSpectrogram	24 Mar 202323:39	–	vulnrichment
OSV	CVE-2023-25666	25 Mar 202300:15	–	osv
OSV	GHSA-F637-VH3R-VFH2 TensorFlow has Floating Point Exception in AudioSpectrogram	24 Mar 202321:57	–	osv
OSV	BIT-TENSORFLOW-2023-25666	6 Mar 202411:08	–	osv
Prion	Stack overflow	25 Mar 202300:15	–	prion
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow (CVE-2023-25666)	28 Jun 202320:03	–	ibm

Nvd

Vulners

Node

google tensorflowRange<2.12.0

[
  {
    "vendor": "tensorflow",
    "product": "tensorflow",
    "versions": [
      {
        "version": "< 2.11.1",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/tensorflow/tensorflow/commit/d0d4e779da0d0f56499c6fa5ba09f0a576cc6b14
github	www.github.com/tensorflow/tensorflow/security/advisories/GHSA-f637-vh3r-vfh2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Mar 2023 00:15Current

7.4High risk

Vulners AI Score7.4

CVSS37.5

EPSS0.0003

SSVC

CWE-697