CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-35968 Malicious code in test-mlw2-phony-grama-erses-luted (npm)

The package test-mlw2-phony-grama-erses-luted was found to contain malicious code...

7.2AI score

OSV•added 2024/05/21 5:57 a.m.•1 views

BELL-CVE-2024-35968

Bulletin has no description...

5.5CVSS7.2AI score0.00006EPSS

Circl•added 2023/10/11 8:17 p.m.•0 views

CVE-2023-35968

creationtimestamp| type| source ---|---|--- 2023-10-11 20:17:58+00:00| seen| https://t.me/cibsecurity/72127 2023-10-12 19:17:31+00:00| seen| https://t.me/truesecator/4958...

9.8CVSS7.3AI score0.00318EPSS

Exploits0References2

CVE•added 2023/10/11 3:14 p.m.•46 views

CVE-2023-35968

CVE-2023-35968 is a vulnerability in the Yifan YF325 v1.0_20221108 that causes a heap-based buffer overflow in the gwcfg_cgi_set_manage_post_data handling of POST data. The flaw stems from an integer overflow in the realloc path when content_length + 1 is allocated without validating content_leng...

9.8CVSS9.8AI score0.00318EPSS

Exploits0References2Affected Software1

Circl•added 2022/09/17 12:29 a.m.•2 views

CVE-2022-35968

creationtimestamp| type| source ---|---|--- 2022-09-17 00:29:21+00:00| seen| https://t.me/cibsecurity/49993...

vulnersOsv•added 2022/09/16 10:16 p.m.•0 views

acuity (=6.18.0), acuitypro (=6.18.0) +60 more potentially affected by CVE-2022-35968 via tensorflow (>=2.8.0 <=2.8.0rc1)

tensorflow PYPI version =2.8.0, =1.2.8, =1.0.43, =0.2.2, =0.0.1, =0.0.2, =0.2.8, =0.14.0, =0.1.3, =0.0.9, =0.2.27, =0.2.41 - complaintclassify =0.0.5 - conversational-sentence-encoder =0.0.6 and more Source cves: CVE-2022-35968 Source advisory: OSV:GHSA-2475-53VW-VP25...

vulnersOsv•added 2022/09/16 10:16 p.m.•3 views

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +98 more potentially affected by CVE-2022-35968 via tensorflow-cpu (>=1.15.0 <=2.7.0)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2022-35968 Source advisory: OSV:GHSA-2475-53VW-VP25...

vulnersOsv•added 2022/09/16 10:16 p.m.•1 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4868 more potentially affected by CVE-2022-35968 via tensorflow (>=1.0.1 <=2.7.1)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.5.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-35968 Source advisory: OSV:GHSA-2475-53VW-VP25...

vulnersOsv•added 2022/09/16 10:16 p.m.•5 views

aliby (>=0.1.18 <=0.1.55), aliby-baby (>=0.1.11 <=0.1.17) +29 more potentially affected by CVE-2022-35968 via tensorflow (>=2.9.0 <=2.9.0rc2)

tensorflow PYPI version =2.9.0, =0.1.18, =0.1.11, =0.30.0, =0.0.0, =1.3.0, =0.3.0, =1.0.1, =1.2.0, =0.0.6, =1.0.12, =0.1.0, =0.1.1 and more Source cves: CVE-2022-35968 Source advisory: OSV:GHSA-2475-53VW-VP25...

vulnersOsv•added 2022/09/16 10:16 p.m.•2 views

clip-jax (=0.0.5) potentially affected by CVE-2022-35968 via tensorflow-cpu (=2.9.0)

tensorflow-cpu PYPI version =2.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - clip-jax =0.0.5 Source cves: CVE-2022-35968 Source advisory: OSV:GHSA-2475-53VW-VP25...

vulnersOsv•added 2022/09/16 10:16 p.m.•3 views

animl (>=1.1.2 <=1.1.4), arekit (>=0.21.0 <=0.22.1) +182 more potentially affected by CVE-2022-35968 via tensorflow-gpu (>=1.10.1 <=2.7.0)

tensorflow-gpu PYPI version =1.10.1, =1.1.2, =0.21.0, =0.23.0, =0.9.2, =1.0.0, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 and more Source cves: CVE-2022-35968 Source advisory: OSV:GHSA-2475-53VW-VP25...

Vulnrichment•added 2022/09/16 8:40 p.m.•6 views

CVE-2022-35968 `CHECK` fail in `AvgPoolGrad` in TensorFlow

5.9CVSS7.4AI score0.0007EPSS

Exploits0References2

CVE•added 2022/09/16 8:40 p.m.•73 views

CVE-2022-35968

TensorFlow: CVE-2022-35968 affects AvgPoolGrad where input orig_input_shape is not fully validated, triggering a CHECK failure that can cause a denial of service. A patch was applied in GitHub commit 3a6ac52664c6c095aa2b114e742b0aa17fdce78f and the fix is scheduled for TensorFlow 2.10.0, with che...

7.5CVSS6.3AI score0.0007EPSS

Exploits0References2Affected Software1

OSV•added 2022/09/16 8:40 p.m.•14 views

CVE-2022-35968 `CHECK` fail in `AvgPoolGrad` in TensorFlow

5.9CVSS7.6AI score0.0007EPSS

Exploits0References4

NVD•added 2021/07/19 12:15 p.m.•12 views

CVE-2021-35968

The directory list page parameter of the Orca HCM digital learning platform fails to filter special characters properly. Remote attackers can access the system directory thru Path Traversal with users’ privileges...

4.3CVSS0.00252EPSS

Exploits0References2

CVE•added 2021/07/19 11:55 a.m.•35 views

CVE-2021-35968

The CVE-2021-35968 entry concerns LearningDigital’s Orca HCM digital learning platform. Affected component: the directory listing page parameter. Root cause: improper filtering of special characters enables Path Traversal. Impact: remote attackers could access system directories under the user’s ...

4.3CVSS4.7AI score0.00252EPSS

Exploits0References2Affected Software1

CNVD•added 2020/06/08 12:0 a.m.•2 views

Combodo iTop Cross-Site Scripting Vulnerability (CNVD-2020-35968)

Combodo iTop is a French company Combodo ITIL-based development and for the daily operation of the IT environment of open source Web applications. The program provides incident management, configuration management and problem management. A cross-site scripting vulnerability exists in the id of th...

6.1CVSS6.3AI score0.00359EPSS