Lucene search
K

24 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 2:53 p.m.7 views

CVE-2020-15205

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the datasplits argument of tf.rawops.StringNGrams lacks validation. This allows a user to pass values that can cause heap overflow errors and even leak contents of memory In the linked code snippet, all the binary strings after ...

9.8CVSS6.8AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.3 views

ai4bharat-transliteration (>=1.1.0 <=1.1.3), aipack (>=0.0.1 <=0.0.5) +52 more potentially affected by CVE-2020-15205 via tensorflow (>=2.0.0 <=2.0.1)

tensorflow PYPI version =2.0.0, =1.1.0, =0.0.1, =0.1.3.2, =0.2.6, =0.2.0, =0.0.2, =1.0.0.1, =0.0.1, =1.0.4, =0.6.0.post3, =0.1.3, =1.0.0, =1.0.1 and more Source cves: CVE-2020-15205 Source advisory: OSV:PYSEC-2020-128...

9.8CVSS7.7AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.7 views

adapt-diagnostics (=1.2.0), adversarial-friend (=1.1.8) +64 more potentially affected by CVE-2020-15205 via tensorflow (=2.3.0)

tensorflow PYPI version =2.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - adapt-diagnostics =1.2.0 - adversarial-friend =1.1.8 - aliby-baby =0.1.0, =0.0.1a0, =0.0.1, =1.0.1.0, =0.1.0, =2.0.0, =0.1.0, =0.0.17, =0.1...

9.8CVSS7.7AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.7 views

abba-python (>=0.1.6 <=0.3.0), adpred (>=1.1.2 <=1.2.7) +233 more potentially affected by CVE-2020-15205 via tensorflow (>=1.0.1 <=1.15.3)

tensorflow PYPI version =1.0.1, =0.1.6, =1.1.2, =0.0.1, =0.3.26, =0.2.0, =0.4.2, =0.1.1, =0.1.5 - autobazaar =0.1.0 - autogan =0.0.5 - automationobjectdetection-sandeepjena7 =0.0.1 - automl-lib =0.0.1 and more Source cves: CVE-2020-15205 Source advisory: OSV:PYSEC-2020-128...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.10 views

aglvq (=1.0.0), beacon-trellis (=0.1.0) +64 more potentially affected by CVE-2020-15205 via tensorflow (=2.1.0)

tensorflow PYPI version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - aglvq =1.0.0 - beacon-trellis =0.1.0 - biobb-ml =3.0.0, =0.0.1, =0.2.0, =0.0.2, =0.1.0, =1.1.0, =0.2.0rc1, =0.2.0rc3 and more Source cves:...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.4 views

accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +82 more potentially affected by CVE-2020-15205 via tensorflow (=2.2.0)

tensorflow PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - accuinsight =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2020-15205 Source advisory...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.3 views

gamornet-cpu (>=0.2.3 <=0.4.3), tchatbot (=0.1.0) +1 more potentially affected by CVE-2020-15205 via tensorflow-cpu (=1.15.0)

tensorflow-cpu PYPI version =1.15.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - gamornet-cpu =0.2.3, =0.7.0, =0.7.5 Source cves: CVE-2020-15205 Source advisory: OSV:PYSEC-2020-285...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.4 views

tensorflowjs (>=1.5.2 <=1.7.4) potentially affected by CVE-2020-15205 via tensorflow-cpu (=2.1.0)

tensorflow-cpu PYPI version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - tensorflowjs =1.5.2, =1.7.4 Source cves: CVE-2020-15205 Source advisory: OSV:PYSEC-2020-285...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.3 views

pycnet-audio (>=0.5.1 <=0.5.8) potentially affected by CVE-2020-15205 via tensorflow-cpu (=2.2.0)

tensorflow-cpu PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - pycnet-audio =0.5.1, =0.5.8 Source cves: CVE-2020-15205 Source advisory: OSV:PYSEC-2020-285...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.8 views

deep-floorplan (=0.0.0) potentially affected by CVE-2020-15205 via tensorflow-gpu (=2.3.0)

tensorflow-gpu PYPI version =2.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - deep-floorplan =0.0.0 Source cves: CVE-2020-15205 Source advisory: OSV:PYSEC-2020-320...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.6 views

azureml-designer-recommender-modules (>=0.0.1 <=0.0.9), monk-cuda100 (=0.0.1) +9 more potentially affected by CVE-2020-15205 via tensorflow-gpu (>=2.0.0 <=2.0.1)

tensorflow-gpu PYPI version =2.0.0, =0.0.1, =0.0.9 - monk-cuda100 =0.0.1 - monk-cuda100-test =0.0.1 - monk-cuda101 =0.0.1 - monk-cuda101-test =0.0.1 - monk-keras-cuda100 =0.0.1 - monk-keras-cuda100-test =0.0.1 - monk-keras-cuda101 =0.0.1 - monk-keras-cuda101-test =0.0.1 - monk-keras-cuda102 =0.0....

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.4 views

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +49 more potentially affected by CVE-2020-15205 via tensorflow-gpu (>=1.10.1 <=1.15.3)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.1.0, =0.1.0, =1.0.0, =0.2.3, =0.0.1, =0.0.7, =0.2.0 - keras-textclassification =0.1.6 and more Source cves: CVE-2020-15205 Source advisory: OSV:PYSEC-2020-320...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.5 views

d3m-simon (=1.2.5), easyquake (>=1.3.0 <=1.4.0) potentially affected by CVE-2020-15205 via tensorflow-gpu (=2.2.0)

tensorflow-gpu PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - d3m-simon =1.2.5 - easyquake =1.3.0, =1.4.0 Source cves: CVE-2020-15205 Source advisory: OSV:PYSEC-2020-320...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
Debian CVE
Debian CVE
added 2020/09/25 6:45 p.m.4 views

CVE-2020-15205

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the datasplits argument of tf.rawops.StringNGrams lacks validation. This allows a user to pass values that can cause heap overflow errors and even leak contents of memory In the linked code snippet, all the binary strings after ...

9.8CVSS7.3AI score0.01015EPSS
Exploits1
CVE
CVE
added 2020/09/25 6:45 p.m.176 views

CVE-2020-15205

CVE-2020-15205 affects TensorFlow: the data_splits parameter of tf.raw_ops.StringNGrams lacks validation, allowing crafted input that can cause heap overflow and memory leakage, potentially leaking memory contents and aiding ASLR defeat. Affected TF versions include 1.15.4 and 2.x releases up to ...

9.8CVSS9.1AI score0.01015EPSS
Exploits1References4Affected Software1
vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.3 views

gamornet-cpu (>=0.2.3 <=0.4.3), tchatbot (=0.1.0) +1 more potentially affected by CVE-2020-15205 via tensorflow-cpu (=1.15.0)

tensorflow-cpu PYPI version =1.15.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - gamornet-cpu =0.2.3, =0.7.0, =0.7.5 Source cves: CVE-2020-15205 Source advisory: OSV:GHSA-G7P5-5759-QV46...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.3 views

accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +82 more potentially affected by CVE-2020-15205 via tensorflow (=2.2.0)

tensorflow PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - accuinsight =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2020-15205 Source advisory...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.3 views

ai4bharat-transliteration (>=1.1.0 <=1.1.3), aipack (>=0.0.1 <=0.0.5) +52 more potentially affected by CVE-2020-15205 via tensorflow (>=2.0.0 <=2.0.1)

tensorflow PYPI version =2.0.0, =1.1.0, =0.0.1, =0.1.3.2, =0.2.6, =0.2.0, =0.0.2, =1.0.0.1, =0.0.1, =1.0.4, =0.6.0.post3, =0.1.3, =1.0.0, =1.0.1 and more Source cves: CVE-2020-15205 Source advisory: OSV:GHSA-G7P5-5759-QV46...

9.8CVSS7.7AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.4 views

abba-python (>=0.1.6 <=0.3.0), adpred (>=1.1.2 <=1.2.7) +233 more potentially affected by CVE-2020-15205 via tensorflow (>=1.0.1 <=1.15.3)

tensorflow PYPI version =1.0.1, =0.1.6, =1.1.2, =0.0.1, =0.3.26, =0.2.0, =0.4.2, =0.1.1, =0.1.5 - autobazaar =0.1.0 - autogan =0.0.5 - automationobjectdetection-sandeepjena7 =0.0.1 - automl-lib =0.0.1 and more Source cves: CVE-2020-15205 Source advisory: OSV:GHSA-G7P5-5759-QV46...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.4 views

tensorflowjs (>=1.5.2 <=1.7.4) potentially affected by CVE-2020-15205 via tensorflow-cpu (=2.1.0)

tensorflow-cpu PYPI version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - tensorflowjs =1.5.2, =1.7.4 Source cves: CVE-2020-15205 Source advisory: OSV:GHSA-G7P5-5759-QV46...

9.8CVSS7.2AI score0.01015EPSS
Exploits1
Rows per page
Query Builder