EUVD-2019-0139

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Google TensorFlow 1.6.x and earlier has a context-dependent Null Pointer Dereference vulnerability.

Reporter	Title	Published	Views	Family All 17
CVE	CVE-2018-7576	23 Apr 201920:44	–	cve
Cvelist	CVE-2018-7576	23 Apr 201920:44	–	cvelist
Debian CVE	CVE-2018-7576	23 Apr 201920:44	–	debiancve
Github Security Blog	Null pointer dereference in TensorFlow leads to exploitation	24 Apr 201916:11	–	github
NVD	CVE-2018-7576	23 Apr 201921:29	–	nvd
OSV	GHSA-JFQ2-RJ7F-9GVF Null pointer dereference in TensorFlow leads to exploitation	24 Apr 201916:11	–	osv
OSV	PYSEC-2019-206	23 Apr 201921:29	–	osv
OSV	PYSEC-2019-224	23 Apr 201921:29	–	osv
OSV	PYSEC-2019-231	23 Apr 201921:29	–	osv
Prion	Null pointer dereference	23 Apr 201921:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "4bd7eac5-8614-3ab9-9110-ed4269e3cdbd",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "2e97a045-e037-34ef-a8eb-d365a884a18b",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
github	www.github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-002.md
github	www.github.com/advisories/GHSA-jfq2-rj7f-9gvf
nvd	www.nvd.nist.gov/vuln/detail/CVE-2018-7576
github	www.github.com/tensorflow/tensorflow/commit/c48431588e7cf8aff61d4c299231e3e925144df8
github	www.github.com/pypa/advisory-database/tree/main/vulns/tensorflow-cpu/PYSEC-2019-224.yaml
github	www.github.com/pypa/advisory-database/tree/main/vulns/tensorflow-gpu/PYSEC-2019-231.yaml
github	www.github.com/pypa/advisory-database/tree/main/vulns/tensorflow/PYSEC-2019-206.yaml
suse	www.suse.com/security/cve/CVE-2018-7576.html
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.4Medium risk

Vulners AI Score6.4

CVSS 36.5

CVSS 24.3

EPSS0.00109

google tensorflow vulnerability null pointer dereference context-dependent