CVE-2022-35993

TensorFlow is an open source platform for machine learning. When SetSize receives an input setshape that is not a 1D tensor, it gives a CHECK fails that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit cf70b79d2662c0d3c6af74583641e345fc939467. The fix...

Adobe After Effects < 18.4.0 Multiple Vulnerabilities (APSB21-54) (macOS)

The version of Adobe After Effects installed on the remote macOS host is prior to 18.4.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-54 advisory. - Adobe After Effects version 18.2.1 and earlier is affected by a memory corruption vulnerability when parsing ...

CVE-2024-35993 mm: turn folio_test_hugetlb into a PageType

In the Linux kernel, the following vulnerability has been resolved: mm: turn foliotesthugetlb into a PageType The current foliotesthugetlb can be fooled by a concurrent folio split into returning true for a folio which has never belonged to hugetlbfs. This can't happen if the caller holds a...

CVE-2024-35993

In the Linux kernel, the following vulnerability has been resolved: mm: turn foliotesthugetlb into a PageType The current foliotesthugetlb can be fooled by a concurrent folio split into returning true for a folio which has never belonged to hugetlbfs. This can't happen if the caller holds a...

CVE-2023-35993

CVE-2023-35993 is a use-after-free vulnerability affecting Apple's platforms (macOS, iOS, iPadOS, tvOS, watchOS) where an app may execute arbitrary code with kernel privileges. The issue stems from incorrect memory management and is fixed in specific releases: macOS Monterey 12.6.8, macOS Big Sur...

Apple TV < 16.6 Multiple Vulnerabilities (HT213846)

According to its banner, the version of Apple TV on the remote device is prior to 16.6. It is therefore affected by multiple vulnerabilities as described in the HT213846 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid178942; scriptversion"1.2";...

macOS 11.x < 11.7.9 Multiple Vulnerabilities (HT213845)

The remote host is running a version of macOS / Mac OS X that is 11.x prior to 11.7.9. It is, therefore, affected by multiple vulnerabilities: - A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS...

SUSE CVE-2022-35993

TensorFlow is an open source platform for machine learning. When SetSize receives an input setshape that is not a 1D tensor, it gives a CHECK fails that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit cf70b79d2662c0d3c6af74583641e345fc939467. The fix...

CVE-2022-35993

TensorFlow is an open source platform for machine learning. When SetSize receives an input setshape that is not a 1D tensor, it gives a CHECK fails that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit cf70b79d2662c0d3c6af74583641e345fc939467. The fix...

CVE-2022-35993

TensorFlow CVE-2022-35993 concerns a CHECK failure in SetSize when set_shape is not 1D, allowing a denial-of-service condition. The issue is attributed to SetSize input validation and is mitigated by a patch in commit cf70b79d2662c0d3c6af74583641e345fc939467, with fixes planned for TensorFlow 2.1...

clip-jax (=0.0.5) potentially affected by CVE-2022-35993 via tensorflow-cpu (=2.9.0)

tensorflow-cpu PYPI version =2.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - clip-jax =0.0.5 Source cves: CVE-2022-35993 Source advisory: OSV:GHSA-WQ6Q-6M32-9RV9...

aliby (>=0.1.18 <=0.1.55), aliby-baby (>=0.1.11 <=0.1.17) +29 more potentially affected by CVE-2022-35993 via tensorflow (>=2.9.0 <=2.9.0rc2)

tensorflow PYPI version =2.9.0, =0.1.18, =0.1.11, =0.30.0, =0.0.0, =1.3.0, =0.3.0, =1.0.1, =1.2.0, =0.0.6, =1.0.12, =0.1.0, =0.1.1 and more Source cves: CVE-2022-35993 Source advisory: OSV:GHSA-WQ6Q-6M32-9RV9...

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4868 more potentially affected by CVE-2022-35993 via tensorflow (>=1.0.1 <=2.7.1)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.5.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-35993 Source advisory: OSV:GHSA-WQ6Q-6M32-9RV9...

animl (>=1.1.2 <=1.1.4), arekit (>=0.21.0 <=0.22.1) +182 more potentially affected by CVE-2022-35993 via tensorflow-gpu (>=1.10.1 <=2.7.0)

tensorflow-gpu PYPI version =1.10.1, =1.1.2, =0.21.0, =0.23.0, =0.9.2, =1.0.0, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 and more Source cves: CVE-2022-35993 Source advisory: OSV:GHSA-WQ6Q-6M32-9RV9...

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +98 more potentially affected by CVE-2022-35993 via tensorflow-cpu (>=1.15.0 <=2.7.0)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2022-35993 Source advisory: OSV:GHSA-WQ6Q-6M32-9RV9...

CVE-2021-35993

CVE-2021-35993 is an out-of-bounds Write in Adobe After Effects 18.2.1 and earlier triggered when parsing a specially crafted file. An unauthenticated attacker could achieve arbitrary code execution in the current user context, with exploit requiring user interaction (victim opens a malicious fil...

Microsoft Windows Telnet NTLM凭据反射绕过认证漏洞（MS09-042）

BUGTRAQ ID: 35993 CVECAN ID: CVE-2009-1930 Microsoft Windows是微软发布的非常流行的操作系统。 Telnet协议未正确地选择加入NTLM凭据反射保护以确保用户凭据不被反射回来并供用户使用。如果用户受骗连接到了恶意的Telnet服务器，就可能导致反射NTLM凭据并以当前用户的权限获得系统访问。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista SP2 Microsoft Windows Vista SP1 Microsoft Windo...

CVE-2025-35993

CVE-2025-35993 entry is rejected and not used as an active vulnerability.

CVE-2025-35993

...