Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:10 a.m.7 views

CVE-2022-35970

TensorFlow is an open source platform for machine learning. If QuantizedInstanceNorm is given xmin or xmax tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 785d67a78a1d533759fcd2f5e8d6ef778de849e...

7.5CVSS6.6AI score0.00423EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.3 views

SUSE CVE-2022-35970

TensorFlow is an open source platform for machine learning. If QuantizedInstanceNorm is given xmin or xmax tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 785d67a78a1d533759fcd2f5e8d6ef778de849e...

7.5CVSS7.7AI score0.00423EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2022/09/16 10:17 p.m.5 views

aliby (>=0.1.18 <=0.1.55), aliby-baby (>=0.1.11 <=0.1.17) +29 more potentially affected by CVE-2022-35970 via tensorflow (>=2.9.0 <=2.9.0rc2)

tensorflow PYPI version =2.9.0, =0.1.18, =0.1.11, =0.30.0, =0.0.0, =1.3.0, =0.3.0, =1.0.1, =1.2.0, =0.0.6, =1.0.12, =0.1.0, =0.1.1 and more Source cves: CVE-2022-35970 Source advisory: OSV:GHSA-G35R-369W-3FQP...

7.5CVSS7.1AI score0.00423EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 10:17 p.m.6 views

acuity (=6.18.0), acuitypro (=6.18.0) +60 more potentially affected by CVE-2022-35970 via tensorflow (>=2.8.0 <=2.8.0rc1)

tensorflow PYPI version =2.8.0, =1.2.8, =1.0.43, =0.2.2, =0.0.1, =0.0.2, =0.2.8, =0.14.0, =0.1.3, =0.0.9, =0.2.27, =0.2.41 - complaintclassify =0.0.5 - conversational-sentence-encoder =0.0.6 and more Source cves: CVE-2022-35970 Source advisory: OSV:GHSA-G35R-369W-3FQP...

7.5CVSS7.1AI score0.00423EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 10:17 p.m.4 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4899 more potentially affected by CVE-2022-35970 via tensorflow (>=1.0.1 <=2.7.1)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.5.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-35970 Source advisory: OSV:GHSA-G35R-369W-3FQP...

7.5CVSS7.2AI score0.00423EPSS
Exploits0
CVE
CVE
added 2022/09/16 8:45 p.m.77 views

CVE-2022-35970

CVE-2022-35970 affects TensorFlow’s QuantizedInstanceNorm. When x_min or x_max are tensors of a nonzero rank, a segfault occurs, enabling a denial of service as described in the entry. The issue is fixed in the GitHub commit 785d67a78a1d533759fcd2f5e8d6ef778de849e0 and the fix is to be included i...

7.5CVSS6.4AI score0.00423EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/09/16 8:45 p.m.23 views

CVE-2022-35970 Segfault in `QuantizedInstanceNorm` in TensorFlow

TensorFlow is an open source platform for machine learning. If QuantizedInstanceNorm is given xmin or xmax tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 785d67a78a1d533759fcd2f5e8d6ef778de849e...

5.9CVSS7.6AI score0.00423EPSS
Exploits0References4
Rows per page
Query Builder