Lucene search
K

157 matches found

Veracode
Veracode
added 2022/02/04 5:12 p.m.28 views

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service. The vulnerability exists due to the lack of validation of the value of axis and an out-of-bound access allowing an attacker to crash the system via the implementation of Dequantize...

8.8CVSS4AI score0.00818EPSS
Exploits1References6Affected Software3
NVD
NVD
added 2022/02/03 11:15 a.m.35 views

CVE-2022-21726

Tensorflow is an Open Source Machine Learning Framework. The implementation of Dequantize does not fully validate the value of axis and can result in heap OOB accesses. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of...

8.8CVSS0.00818EPSS
Exploits1References3
Prion
Prion
added 2022/02/03 11:15 a.m.24 views

Integer overflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

6.5CVSS8.8AI score0.00659EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/02/03 11:15 a.m.3 views

PYSEC-2022-106

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

8.8CVSS6.1AI score0.00659EPSS
Exploits1References3
PyPA
PyPA
added 2022/02/03 11:15 a.m.10 views

PYSEC-2022-105

Tensorflow is an Open Source Machine Learning Framework. The implementation of Dequantize does not fully validate the value of axis and can result in heap OOB accesses. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of...

8.8CVSS7AI score0.00818EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2022/02/03 11:15 a.m.8 views

PYSEC-2022-50

Tensorflow is an Open Source Machine Learning Framework. The implementation of Dequantize does not fully validate the value of axis and can result in heap OOB accesses. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of...

8.8CVSS7AI score0.00818EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2022/02/03 11:15 a.m.7 views

PYSEC-2022-51

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

8.8CVSS7.6AI score0.00659EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/02/03 11:15 a.m.17 views

PYSEC-2022-50

Tensorflow is an Open Source Machine Learning Framework. The implementation of Dequantize does not fully validate the value of axis and can result in heap OOB accesses. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of...

8.8CVSS1.5AI score0.00818EPSS
Exploits1References3
OSV
OSV
added 2022/02/03 11:15 a.m.25 views

PYSEC-2022-51

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

8.8CVSS2.6AI score0.00659EPSS
Exploits1References3
OSV
OSV
added 2022/02/03 11:15 a.m.7 views

PYSEC-2022-105

Tensorflow is an Open Source Machine Learning Framework. The implementation of Dequantize does not fully validate the value of axis and can result in heap OOB accesses. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of...

8.8CVSS5.9AI score0.00818EPSS
Exploits1References3
PyPA
PyPA
added 2022/02/03 11:15 a.m.7 views

PYSEC-2022-106

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

8.8CVSS7.6AI score0.00659EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2022/02/03 11:15 a.m.17 views

Design/Logic Flaw

Tensorflow is an Open Source Machine Learning Framework. The implementation of Dequantize does not fully validate the value of axis and can result in heap OOB accesses. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of...

6.5CVSS8.8AI score0.00818EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2022/02/03 11:7 a.m.7 views

CVE-2022-21727

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

8.8CVSS7.5AI score0.00659EPSS
Exploits1
OSV
OSV
added 2022/02/03 11:7 a.m.29 views

CVE-2022-21727 Integer overflow in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

7.6CVSS8.8AI score0.00659EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2022/02/03 11:1 a.m.5 views

CVE-2022-21726

Tensorflow is an Open Source Machine Learning Framework. The implementation of Dequantize does not fully validate the value of axis and can result in heap OOB accesses. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of...

8.8CVSS7AI score0.00818EPSS
Exploits1
OSV
OSV
added 2022/02/03 11:1 a.m.26 views

CVE-2022-21726 Out of bounds read in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of Dequantize does not fully validate the value of axis and can result in heap OOB accesses. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of...

8.1CVSS8.7AI score0.00818EPSS
Exploits1References5
Cvelist
Cvelist
added 2022/02/03 11:1 a.m.33 views

CVE-2022-21726 Out of bounds read in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of Dequantize does not fully validate the value of axis and can result in heap OOB accesses. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of...

8.1CVSS9.1AI score0.00818EPSS
Exploits1References3
CVE
CVE
added 2022/02/03 11:1 a.m.101 views

CVE-2022-21726

TensorFlow CVE-2022-21726 affects the Dequantize path, where axis validation is insufficient and can cause heap-out-of-bounds reads. The issue arises when axis is -1 (default) or any large positive value not checked against input dimensions, reading past the dimensions array. A fix is planned for...

8.8CVSS8.4AI score0.00818EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2022/02/03 12:0 a.m.5 views

Google TensorFlow 缓冲区错误漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google Google. Google Tensorflow has a buffer overflow vulnerability that stems from the fact that Dequantize's implementation does not fully validate the value of axis, which can be exploited by an attacker to caus...

8.8CVSS6.1AI score0.00818EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/02/03 12:0 a.m.8 views

PT-2022-15066 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.8.0 TensorFlow versions 2.7.1 and earlier TensorFlow versions 2.6.3 and earlier TensorFlow versions 2.5.3 and earlier Description: The implementation of shape inference for Dequantize is vulnerable to an integer...

8.8CVSS8.7AI score0.00659EPSS
Exploits1References13
Rows per page
Query Builder