Lucene search
K

13 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/03/11 5:12 p.m.16 views

Security Bulletin: Vulnerability in TensorFlow affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component.

Summary Potential vulnerability in TensorFlow has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component.. The vulnerability have been addressed. Refer to details for additional information...

7.5CVSS6.8AI score0.00429EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2024/12/30 1:58 p.m.15 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to tensorflow-2.12.0-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl CVE-2023-33976

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to tensorflow-2.12.0-cp39-cp39-manylinux217x8664.manylinux2014x8664.whl CVE-2023-33976. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2023-33976 DESCRIPTION:...

7.5CVSS6.8AI score0.00429EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/01 9:38 p.m.13 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow [CVE-2023-33976]

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow, caused by a a segfault when not given a rank 2 tensor in the arrayops.upperbound function CVE-2023-33976. TensorFlow is used by our Speech Service runtimes. This...

7.5CVSS6.6AI score0.00429EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/27 10:28 p.m.26 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow [CVE-2023-33976]

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow, caused by a a segfault when not given a rank 2 tensor in the arrayops.upperbound function CVE-2023-33976. TensorFlow is used by our Speech Service runtimes. This...

7.5CVSS7.3AI score0.00429EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.19 views

CBL Mariner 2.0 Security Update: tensorflow (CVE-2023-33976)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-33976 advisory. - TensorFlow is an end-to-end open source platform for machine learning. arrayops.upperbound causes a...

7.5CVSS5.6AI score0.00429EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/08/22 5:18 p.m.48 views

CVE-2023-33976 affecting package tensorflow for versions less than 2.11.1-2

CVE-2023-33976 affecting package tensorflow for versions less than 2.11.1-2. A patched version of the package is available...

7.5CVSS7AI score0.00429EPSS
Exploits0
Circl
Circl
added 2024/07/30 11:16 p.m.10 views

CVE-2023-33976

creationtimestamp| type| source ---|---|--- 2024-07-30 23:16:32+00:00| seen| https://t.me/cvedetector/2074...

7.5CVSS4.7AI score0.00429EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2024/07/30 8:47 p.m.15 views

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +157 more potentially affected by CVE-2023-33976 via tensorflow-gpu (>=1.10.1 <=2.12.0)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - cctv-analysis =0.0.2 - chatbot-nlu =1.0.0 - classitransformers =0.0.1 and more Source cves: CVE-2023-33976 Source advisory: OSV:GHSA-GJH7-XX4R-X345...

7.5CVSS5.7AI score0.00429EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/07/30 8:47 p.m.5 views

cifar-10-model (=7.4.0), clip-jax (>=0.0.1 <=0.0.4) +9 more potentially affected by CVE-2023-33976 via tensorflow-cpu (>=1.15.0 <=2.11.1)

tensorflow-cpu PYPI version =1.15.0, =0.0.1, =0.2.3, =0.0.5, =1.0.0, =1.8.2, =0.1.3, =0.3.0.dev221212, =0.7.0, =0.7.5 Source cves: CVE-2023-33976 Source advisory: OSV:GHSA-GJH7-XX4R-X345...

7.5CVSS5.8AI score0.00429EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/07/30 8:47 p.m.6 views

a2grunnerp (>=0.1.0 <=0.1.8), abba-python (>=0.1.6 <=0.3.0) +712 more potentially affected by CVE-2023-33976 via tensorflow (>=1.0.1 <=2.12.0rc1)

tensorflow PYPI version =1.0.1, =0.1.0, =0.1.6, =0.1.0, =1.1.2, =0.0.1, =0.3.26, =1.1.0, =1.8.15, =1.8.17, =0.0.1, =0.1.18, =1.8.14, =2.2.0 and more Source cves: CVE-2023-33976 Source advisory: OSV:GHSA-GJH7-XX4R-X345...

7.5CVSS5.4AI score0.00429EPSS
Exploits0
Cvelist
Cvelist
added 2024/07/30 7:27 p.m.36 views

CVE-2023-33976 TensorFlow segfault in array_ops.upper_bound

TensorFlow is an end-to-end open source platform for machine learning. arrayops.upperbound causes a segfault when not given a rank 2 tensor. The fix will be included in TensorFlow 2.13 and will also cherrypick this commit on TensorFlow 2.12...

7.5CVSS0.00429EPSS
Exploits0References3
CVE
CVE
added 2024/07/30 7:27 p.m.72 views

CVE-2023-33976

CVE-2023-33976: TensorFlow is vulnerable to a denial-of-service crash due to a segfault in array_ops.upper_bound when not given a rank-2 tensor. The documented root cause is a segfault in array_ops.upper_bound; impact is a crash that can be triggered remotely as described in the advisory. The pub...

7.5CVSS7.5AI score0.00429EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2024/07/30 7:27 p.m.3 views

CVE-2023-33976

TensorFlow is an end-to-end open source platform for machine learning. arrayops.upperbound causes a segfault when not given a rank 2 tensor. The fix will be included in TensorFlow 2.13 and will also cherrypick this commit on TensorFlow 2.12...

7.5CVSS5.2AI score0.00429EPSS
Exploits0
Rows per page
Query Builder