Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:10 a.m.7 views

CVE-2022-35970

TensorFlow is an open source platform for machine learning. If QuantizedInstanceNorm is given xmin or xmax tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 785d67a78a1d533759fcd2f5e8d6ef778de849e...

7.5CVSS6.6AI score0.00423EPSS
Exploits0References1
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-35970 Malicious code in test-mlw2-picks-touts (npm)

The package test-mlw2-picks-touts was found to contain malicious code...

7.2AI score
Exploits0
Debian CVE
Debian CVE
added 2024/05/20 9:41 a.m.20 views

CVE-2024-35970

In the Linux kernel, the following vulnerability has been resolved: afunix: Clear stale u-oobskb. syzkaller started to report deadlock of unixgclock after commit 4090fa373f0e "afunix: Replace garbage collection algorithm.", but it just uncovers the bug that has been there since commit 314001f0bf9...

6.3CVSS7.3AI score0.00499EPSS
Exploits0
Circl
Circl
added 2024/01/16 9:16 p.m.4 views

CVE-2023-35970

creationtimestamp| type| source ---|---|--- 2024-01-16 21:16:36+00:00| seen| https://t.me/ctinow/169002...

7.8CVSS7.4AI score0.00435EPSS
Exploits1References1
OSV
OSV
added 2024/01/08 3:15 p.m.0 views

UBUNTU-CVE-2023-35970

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 chaintable parsing functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This...

7.8CVSS7.6AI score0.00435EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/08 2:47 p.m.16 views

CVE-2023-35970

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 chaintable parsing functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This...

7.8CVSS8.2AI score0.00435EPSS
Exploits1References2
CVE
CVE
added 2024/01/08 2:47 p.m.53 views

CVE-2023-35970

GTKWave contains multiple heap-based buffer overflow vulnerabilities in the fstReaderIterBlocks2 chain_table parsing of FST_BL_VCDATA_DYN_ALIAS2, enabling arbitrary code execution when a crafted .fst file is opened. Affected product: GTKWave 3.3.115 (and related Debian/OSS advisories list 3.3.98+...

7.8CVSS7.9AI score0.00435EPSS
Exploits1References3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.2 views

SUSE CVE-2022-35970

TensorFlow is an open source platform for machine learning. If QuantizedInstanceNorm is given xmin or xmax tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 785d67a78a1d533759fcd2f5e8d6ef778de849e...

7.5CVSS7.7AI score0.00423EPSS
Exploits0References3
Circl
Circl
added 2022/09/17 12:29 a.m.5 views

CVE-2022-35970

creationtimestamp| type| source ---|---|--- 2022-09-17 00:29:12+00:00| published-proof-of-concept| https://t.me/cibsecurity/49987...

7.5CVSS7.1AI score0.00423EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/09/16 10:17 p.m.3 views

acuity (=6.18.0), acuitypro (=6.18.0) +60 more potentially affected by CVE-2022-35970 via tensorflow (>=2.8.0 <=2.8.0rc1)

tensorflow PYPI version =2.8.0, =1.2.8, =1.0.43, =0.2.2, =0.0.1, =0.0.2, =0.2.8, =0.14.0, =0.1.3, =0.0.9, =0.2.27, =0.2.41 - complaintclassify =0.0.5 - conversational-sentence-encoder =0.0.6 and more Source cves: CVE-2022-35970 Source advisory: OSV:GHSA-G35R-369W-3FQP...

7.5CVSS7.1AI score0.00423EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 10:17 p.m.5 views

aliby (>=0.1.18 <=0.1.55), aliby-baby (>=0.1.11 <=0.1.17) +29 more potentially affected by CVE-2022-35970 via tensorflow (>=2.9.0 <=2.9.0rc2)

tensorflow PYPI version =2.9.0, =0.1.18, =0.1.11, =0.30.0, =0.0.0, =1.3.0, =0.3.0, =1.0.1, =1.2.0, =0.0.6, =1.0.12, =0.1.0, =0.1.1 and more Source cves: CVE-2022-35970 Source advisory: OSV:GHSA-G35R-369W-3FQP...

7.5CVSS7.1AI score0.00423EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 10:17 p.m.5 views

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +98 more potentially affected by CVE-2022-35970 via tensorflow-cpu (>=1.15.0 <=2.7.0)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2022-35970 Source advisory: OSV:GHSA-G35R-369W-3FQP...

7.5CVSS7.1AI score0.00423EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 10:17 p.m.4 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4899 more potentially affected by CVE-2022-35970 via tensorflow (>=1.0.1 <=2.7.1)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.5.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-35970 Source advisory: OSV:GHSA-G35R-369W-3FQP...

7.5CVSS7.2AI score0.00423EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 10:17 p.m.8 views

animl (>=1.1.2 <=1.1.4), arekit (>=0.21.0 <=0.22.1) +182 more potentially affected by CVE-2022-35970 via tensorflow-gpu (>=1.10.1 <=2.7.0)

tensorflow-gpu PYPI version =1.10.1, =1.1.2, =0.21.0, =0.23.0, =0.9.2, =1.0.0, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 and more Source cves: CVE-2022-35970 Source advisory: OSV:GHSA-G35R-369W-3FQP...

7.5CVSS7.1AI score0.00423EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 10:17 p.m.3 views

clip-jax (=0.0.5) potentially affected by CVE-2022-35970 via tensorflow-cpu (=2.9.0)

tensorflow-cpu PYPI version =2.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - clip-jax =0.0.5 Source cves: CVE-2022-35970 Source advisory: OSV:GHSA-G35R-369W-3FQP...

7.5CVSS7.1AI score0.00423EPSS
Exploits0
CVE
CVE
added 2022/09/16 8:45 p.m.75 views

CVE-2022-35970

CVE-2022-35970 affects TensorFlow’s QuantizedInstanceNorm. When x_min or x_max are tensors of a nonzero rank, a segfault occurs, enabling a denial of service as described in the entry. The issue is fixed in the GitHub commit 785d67a78a1d533759fcd2f5e8d6ef778de849e0 and the fix is to be included i...

7.5CVSS6.4AI score0.00423EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/09/16 8:45 p.m.22 views

CVE-2022-35970 Segfault in `QuantizedInstanceNorm` in TensorFlow

TensorFlow is an open source platform for machine learning. If QuantizedInstanceNorm is given xmin or xmax tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 785d67a78a1d533759fcd2f5e8d6ef778de849e...

5.9CVSS7.6AI score0.00423EPSS
Exploits0References4
CVE
CVE
added 2021/06/30 2:18 p.m.136 views

CVE-2021-35970

CVE-2021-35970 affects Coral Talk 4 prior to 4.12.1. The issue arises from permission checks using an incorrect data type, enabling remote attackers to query GraphQL and discover email addresses and other sensitive information. Exploitation is remote and unauthenticated as described in the public...

7.5CVSS7.3AI score0.02312EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2021/06/03 8:55 p.m.63 views

CVE-2020-35970

In YzmCMS 5.8, a SSRF vulnerability exists in the backend collection management that allows arbitrary file read. Affected component: backend collection management module of YzmCMS 5.8. Root cause: server-side request forgery enabling access to arbitrary files. Impact stated as partial information...

7.5CVSS7.5AI score0.01317EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder