2 matches found
Magento Commerce 跨站请求伪造漏洞
Magento Commerce is designed to provide a best-in-class shopping experience without the need for developer support.A cross-site request forgery vulnerability exists in Adobe Magento Commerce versions 2.4.2-p2 and earlier, 2.4.3 and earlier, and 2.3.7p1 and earlier. The vulnerability stems from a...
PYSEC-2021-683
TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service via a FPE runtime error in tf.rawops.SparseMatMul. The division by 0 occurs deep in Eigen code because the b tensor is empty. The fix will be included in TensorFlow 2.5.0. We will also...