a2grunnerp (>=0.1.0 <=0.1.8), abba-python (>=0.1.6 <=0.3.0) +1361 more potentially affected by CVE-2021-29557 via tensorflow (>=1.0.1 <=2.1.2)

tensorflow PYPI version =1.0.1, =0.1.0, =0.1.6, =0.0.6, =0.1.0, =0.0.1, =1.1.2, =0.0.1, =2.0.0, =0.3.26, =0.2.1, =7.13.1, =0.0.1, =0.0.2 and more Source cves: CVE-2021-29557 Source advisory: OSV:GHSA-XW93-V57J-FCGH...

a2grunnerp (>=0.1.0 <=0.1.8), abba-python (>=0.1.6 <=0.3.0) +1361 more potentially affected by CVE-2021-29519 via tensorflow (>=1.0.1 <=2.1.2)

tensorflow PYPI version =1.0.1, =0.1.0, =0.1.6, =0.0.6, =0.1.0, =0.0.1, =1.1.2, =0.0.1, =2.0.0, =0.3.26, =0.2.1, =7.13.1, =0.0.1, =0.0.2 and more Source cves: CVE-2021-29519 Source advisory: OSV:GHSA-772J-H9XW-FFP5...

a2grunnerp (>=0.1.0 <=0.1.8), abba-python (>=0.1.6 <=0.3.0) +1361 more potentially affected by CVE-2021-29517 via tensorflow (>=1.0.1 <=2.1.2)

tensorflow PYPI version =1.0.1, =0.1.0, =0.1.6, =0.0.6, =0.1.0, =0.0.1, =1.1.2, =0.0.1, =2.0.0, =0.3.26, =0.2.1, =7.13.1, =0.0.1, =0.0.2 and more Source cves: CVE-2021-29517 Source advisory: OSV:PYSEC-2021-154...

a2grunnerp (>=0.1.0 <=0.1.8), abba-python (>=0.1.6 <=0.3.0) +1361 more potentially affected by CVE-2021-29559 via tensorflow (>=1.0.1 <=2.1.2)

tensorflow PYPI version =1.0.1, =0.1.0, =0.1.6, =0.0.6, =0.1.0, =0.0.1, =1.1.2, =0.0.1, =2.0.0, =0.3.26, =0.2.1, =7.13.1, =0.0.1, =0.0.2 and more Source cves: CVE-2021-29559 Source advisory: OSV:PYSEC-2021-196...

PYSEC-2021-208

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.MaxPoolGradWithArgmax can cause reads outside of bounds of heap allocated data if attacker supplies specially crafted inputs. The...

U.S. Dept Of Defense: [█████████] Reflected Cross-Site Scripting Vulnerability

Description: A reflected cross-site vulnerability was found at ███████/██████. References Impact XSS is a versatile attack vector which opens the door to a large number of social-engineering and client-side attacks System Hosts ██████ Affected Products and Versions CVE Numbers Steps to Reproduce ...

Google TensorFlow 代码问题漏洞

Google TensorFlow is an end-to-end open source machine learning platform. A denial of service vulnerability exists in TensorFlow. An attacker can exploit this vulnerability by passing empty images to tf.rawops.DrawBoundingBoxes to cause a CHECK failure denial of service...

AVM FRITZ!Box Multiple Wi-Fi Vulnerabilities (FragAttacks)

AVM FRITZ!Box devices are prone to multiple Wi-Fi vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:avm:fritz%21os...

The vulnerability of the REST API interface of the Cisco Firepower Device Manager On-Box software allows a hacker to trigger a maintenance failure.

The vulnerability of the REST API interface of the Cisco Firepower Device Manager On-Box software relates to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow a malicious actor to trigger service failure remotely...

CVE-2021-1369 Cisco Firepower Device Manager On-Box Software XML External Entity Vulnerability

A vulnerability in the REST API of Cisco Firepower Device Manager FDM On-Box Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected device. This vulnerability is due to the improper handling of XML External Entity XXE...

CVE-2021-1369 Cisco Firepower Device Manager On-Box Software XML External Entity Vulnerability

A vulnerability in the REST API of Cisco Firepower Device Manager FDM On-Box Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected device. This vulnerability is due to the improper handling of XML External Entity XXE...

Cisco Firepower Device Manager On-Box Software XML External Entity Vulnerability

A vulnerability in the REST API of Cisco Firepower Device Manager FDM On-Box Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected device. This vulnerability is due to the improper handling of XML External Entity XXE...

DEBIAN-CVE-2020-23931

An issue was discovered in gpac before 1.0.1. The abstboxread function in boxcodeadobe.c has a heap-based buffer over-read...

CVE-2020-35980

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a use-after-free in the function gfisomboxdel in isomedia/boxfuncs.c...

UBUNTU-CVE-2020-35980

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a use-after-free in the function gfisomboxdel in isomedia/boxfuncs.c...

GPAC 缓冲区错误漏洞

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A heap buffer overflow vulnerability exists in the abstboxread function in boxcodeadobe.c in versions of GPAC prior to 1.0.1. No detailed vulnerability details are provided at this time...

GPAC 资源管理错误漏洞

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A post-release reuse vulnerability exists in the gfisomboxdel function in isomedia/boxfuncs.c in GPAC versions 0.8.0 and 1.0.1. No detailed vulnerability details are provided at this time...

GPAC 缓冲区错误漏洞

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A heap buffer overflow vulnerability exists in the abstboxread function in boxcodeadobe.c in versions of GPAC prior to 1.0.1. No detailed vulnerability details are provided at this time...

PT-2021-11891 · Gpac · Gpac

Name of the Vulnerable Software and Affected Versions: GPAC versions 0.8.0 through 1.0.1 Description: An issue was discovered in the function gf isom box del in isomedia/box funcs.c, which is a use-after-free. Recommendations: For GPAC version 0.8.0, update to a version that fixes the...

DEBIAN-CVE-2021-31255

Buffer overflow in the abstboxread function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file...