CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41909)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41909 advisory. - TensorFlow is an open source platform for machine learning. An input encoded that is not a valid...

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41899)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41899 advisory. - TensorFlow is an open source platform for machine learning. Inputs densefeatures or examplestatedata not...

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41888)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41888 advisory. - TensorFlow is an open source platform for machine learning. When running on GPU,...

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41907)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41907 advisory. - TensorFlow is an open source platform for machine learning. When tf.rawops.ResizeNearestNeighborGrad is...

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41908)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41908 advisory. - TensorFlow is an open source platform for machine learning. An input token that is not a UTF-8 bytestrin...

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41890)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41890 advisory. - TensorFlow is an open source platform for machine learning. If BCast::ToShape is given input larger than...

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41886)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41886 advisory. - TensorFlow is an open source platform for machine learning. When tf.rawops.ImageProjectiveTransformV2 is...

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41901)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41901 advisory. - TensorFlow is an open source platform for machine learning. An input sparsematrix that is not a matrix...

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41895)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41895 advisory. - TensorFlow is an open source platform for machine learning. If MirrorPadGrad is given outsize input...

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41884)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41884 advisory. - TensorFlow is an open source platform for machine learning. If a numpy array is created with a shape suc...

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41911)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41911 advisory. - TensorFlow is an open source platform for machine learning. When printing a tensor, we get it's data as ...

LinkedIn: Users can access exams in course without having to subscribe to PREMIUM

Improper access controls allowed users to access premium exams without subscribing...

CVE-2023-23929

vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. Currently, the refresh token is valid indefinitely. The refresh token should get a validity of 24-48 hours. A fix was released in version 3.8.0...

Design/Logic Flaw

vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. Currently, the refresh token is valid indefinitely. The refresh token should get a validity of 24-48 hours. A fix was released in version 3.8.0...

PYSEC-2023-54

vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. Currently, the refresh token is valid indefinitely. The refresh token should get a validity of 24-48 hours. A fix was released in version 3.8.0...

PYSEC-2023-54

vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. Currently, the refresh token is valid indefinitely. The refresh token should get a validity of 24-48 hours. A fix was released in version 3.8.0...

vantage6 代码问题漏洞

vantage6 is vantage6 open source an open source priVAcy preserviNg federalTed leArningG infrastructure for Secure Insight eXchange. A code issue vulnerability exists in vantage6 that stems from the token being valid indefinitely...

CVE-2023-23929

Vantage6 CVE-2023-23929 describes a token‑refresh flaw: refresh tokens were allowed to remain valid indefinitely, enabling long‑term access. The issue is fixed in version 3.8.0. Documented CVSSv3.1 metrics indicate high impact (Confidentiality/Integrity/Availability: High) with network access, un...

CVE-2023-23929 Refresh tokens do not expire in Vantage6

vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. Currently, the refresh token is valid indefinitely. The refresh token should get a validity of 24-48 hours. A fix was released in version 3.8.0...

CVE-2023-23929 Refresh tokens do not expire in Vantage6

vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. Currently, the refresh token is valid indefinitely. The refresh token should get a validity of 24-48 hours. A fix was released in version 3.8.0...