Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:17 a.m.6 views

CVE-2022-29204

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.UnsortedSegmentJoin does not fully validate the input arguments. This results in a CHECK-failure which can be used to trigger a denial of service attack. T...

5.5CVSS6.8AI score0.00346EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2022/05/24 10:12 p.m.8 views

lsmmdma (>=0.0.4 <=0.1.7), tpu-tf2 (=1.0.0) potentially affected by CVE-2022-29204 via tensorflow-cpu (=2.7.0)

tensorflow-cpu PYPI version =2.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - lsmmdma =0.0.4, =0.1.7 - tpu-tf2 =1.0.0 Source cves: CVE-2022-29204 Source advisory: OSV:GHSA-HX9Q-2MX4-M4PG...

5.5CVSS6AI score0.00346EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/24 10:12 p.m.10 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +102 more potentially affected by CVE-2022-29204 via tensorflow-cpu (>=1.15.0 <=2.5.3)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-29204 Source advisory: OSV:GHSA-HX9Q-2MX4-M4PG...

5.5CVSS6AI score0.00346EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/24 10:12 p.m.4 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4878 more potentially affected by CVE-2022-29204 via tensorflow (>=1.0.1 <=2.6.3)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.6.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-29204 Source advisory: OSV:GHSA-HX9Q-2MX4-M4PG...

5.5CVSS5.9AI score0.00346EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/24 10:12 p.m.4 views

aadhaar-detection (=0.5.0), accuinsight (>=1.0.84 <=1.0.87) +39 more potentially affected by CVE-2022-29204 via tensorflow (>=2.7.0 <=2.7.1)

tensorflow PYPI version =2.7.0, =1.0.84, =3.0.22, =0.1.11, =0.1.11, =0.1.11, =0.1.0, =0.0.1, =1.2.1, =0.1.5.dev202303131412, =0.1.0, =0.1.1 and more Source cves: CVE-2022-29204 Source advisory: OSV:GHSA-HX9Q-2MX4-M4PG...

5.5CVSS6AI score0.00346EPSS
Exploits1
Circl
Circl
added 2022/05/21 2:31 a.m.9 views

CVE-2022-29204

creationtimestamp| type| source ---|---|--- 2022-05-21 02:31:03+00:00| seen| https://t.me/cibsecurity/43111...

5.5CVSS5.4AI score0.00346EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/05/20 10:40 p.m.4 views

CVE-2022-29204 Missing validation causes denial of service in TensorFlow via `Conv3DBackpropFilterV2`

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.UnsortedSegmentJoin does not fully validate the input arguments. This results in a CHECK-failure which can be used to trigger a denial of service attack. T...

5.5CVSS5.7AI score0.00346EPSS
Exploits1References9
CVE
CVE
added 2022/05/20 10:40 p.m.115 views

CVE-2022-29204

TensorFlow CVE-2022-29204 affects the tf.raw_ops.UnsortedSegmentJoin implementation in multiple pre-2.9.0 releases (2.9.0, 2.8.1, 2.7.2, 2.6.4). The issue arises from incomplete validation of input arguments, specifically num_segments, which is treated as a positive scalar and used to allocate th...

5.5CVSS5.5AI score0.00346EPSS
Exploits1References9Affected Software1
Rows per page
Query Builder