Lucene search
K

25 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.15 views

EUVD-2021-0306

Malware in sbrugna...

5.5CVSS5.3AI score0.00189EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-0322

Malware in sbrugna...

5.5CVSS5.3AI score0.00189EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2025/05/22 7:36 p.m.5 views

CVE-2021-29589

TensorFlow is an end-to-end open source platform for machine learning. The reference implementation of the GatherNd TFLite operator is vulnerable to a division by zero...

7.8CVSS6.6AI score0.00201EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:36 p.m.5 views

CVE-2021-29515

TensorFlow is an end-to-end open source platform for machine learning. The implementation of MatrixDiag operationshttps://github.com/tensorflow/tensorflow/blob/4c4f420e68f1cfaf8f4b6e8e3eb857e9e4c3ff33/tensorflow/core/kernels/linalg/matrixdiagop.ccL195-L197 does not validate that the tensor...

7.8CVSS6.8AI score0.00201EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:43 a.m.4 views

SUSE CVE-2021-29516

TensorFlow is an end-to-end open source platform for machine learning. Calling tf.rawops.RaggedTensorToVariant with arguments specifying an invalid ragged tensor results in a null pointer dereference. The implementation of RaggedTensorToVariant...

5.5CVSS5.5AI score0.00198EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:43 a.m.3 views

SUSE CVE-2021-29557

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service via a FPE runtime error in tf.rawops.SparseMatMul. The division by 0 occurs deep in Eigen code because the b tensor is empty. The fix will be included in TensorFlow 2.5.0. We will also...

5.5CVSS5.5AI score0.00189EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/09/16 12:0 a.m.4 views

PT-2022-23096

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.10.0 TensorFlow versions 2.9.1 and earlier TensorFlow versions 2.8.1 and earlier TensorFlow versions 2.7.2 and earlier Description The issue arises when EmptyTensorList receives an input element shape with more...

7.5CVSS7.1AI score0.00405EPSS
Exploits0References12
OSV
OSV
added 2021/08/25 2:42 p.m.1 views

GHSA-5XWC-MRHX-5G3M Reference binding to nullptr in `MatrixDiagV*` ops

Impact An attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixDiagV: python import tensorflow as tf tf.rawops.MatrixDiagV3 diagonal=1,0, k=, numrows=1,2,3, numcols=4,5, paddingvalue=, align='RIGHTRIGHT' The implementation has...

7.1CVSS6.4AI score0.00167EPSS
Exploits0References7
OSV
OSV
added 2021/08/12 9:15 p.m.8 views

PYSEC-2021-279

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixDiagV. The implementation has incomplete validation that the value of k is a valid...

7.8CVSS6.6AI score0.00167EPSS
Exploits0References2
OSV
OSV
added 2021/08/12 9:15 p.m.8 views

PYSEC-2021-280

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixSetDiagV. The implementation has incomplete validation that the value of k is a...

7.8CVSS6.6AI score0.00167EPSS
Exploits0References2
PyPA
PyPA
added 2021/08/12 9:15 p.m.9 views

PYSEC-2021-279

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixDiagV. The implementation has incomplete validation that the value of k is a valid...

7.8CVSS7.1AI score0.00167EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/08/12 9:15 p.m.5 views

CVE-2021-37658

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixSetDiagV. The implementation has incomplete validation that the value of k is a...

7.8CVSS5.8AI score0.00167EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2021/08/12 9:15 p.m.8 views

PYSEC-2021-769

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixSetDiagV. The implementation has incomplete validation that the value of k is a...

7.8CVSS7.1AI score0.00167EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/08/12 9:15 p.m.7 views

PYSEC-2021-769

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixSetDiagV. The implementation has incomplete validation that the value of k is a...

7.8CVSS6.6AI score0.00167EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2021/08/12 8:50 p.m.4 views

CVE-2021-37657

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixDiagV. The implementation has incomplete validation that the value of k is a valid...

7.8CVSS7AI score0.00167EPSS
Exploits0
Debian CVE
Debian CVE
added 2021/08/12 8:50 p.m.4 views

CVE-2021-37658

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixSetDiagV. The implementation has incomplete validation that the value of k is a...

7.8CVSS7AI score0.00167EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/08/12 12:0 a.m.4 views

PT-2021-21791 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.6.0 TensorFlow versions 2.5.1 and earlier TensorFlow versions 2.4.3 and earlier TensorFlow versions 2.3.4 and earlier Description: An attacker can trigger a denial of service via a CHECK-fail in tf.raw...

9.3CVSS5.6AI score0.00451EPSS
Exploits5References86
OSV
OSV
added 2021/05/21 2:23 p.m.4 views

GHSA-JHQ9-WM9M-CF89 CHECK-failure in `UnsortedSegmentJoin`

Impact An attacker can cause a denial of service by controlling the values of numsegments tensor argument for UnsortedSegmentJoin: python import tensorflow as tf inputs = tf.constant, dtype=tf.string segmentids = tf.constant, dtype=tf.int32 numsegments = tf.constant, dtype=tf.int32 separator = ''...

2.5CVSS6AI score0.00189EPSS
Exploits1References7
OSV
OSV
added 2021/05/14 8:15 p.m.4 views

PYSEC-2021-678

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service by controlling the values of numsegments tensor argument for UnsortedSegmentJoin. This is because the...

5.5CVSS6.1AI score0.00189EPSS
Exploits1References2
OSV
OSV
added 2021/05/14 8:15 p.m.7 views

PYSEC-2021-657

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a CHECK fail in PNG encoding by providing an empty input tensor as the pixel data. This is because the...

5.5CVSS6.3AI score0.00189EPSS
Exploits1References2
Rows per page
Query Builder