Google TensorFlow Dezero Error Vulnerability (CNVD-2021-64070)

Google TensorFlow is an end-to-end open source machine learning platform. the implementation of tf.rawops.SparseDenseCwiseDiv in versions prior to Google TensorFlow 2.6.0 is vulnerable to a dezero error. No details of the vulnerability are currently available...

Google TensorFlow null pointer dereference vulnerability (CNVD-2021-64071)

Google TensorFlow is an end-to-end open source machine learning platform. a null pointer dereference vulnerability exists in the rowpartitiontypes of the tf.rawops.RaggedTensorToTensor API in versions prior to Google TensorFlow 2.6.0. An attacker can exploit this vulnerability by sending invalid...

Google TensorFlow integer division by zero error vulnerability

Google TensorFlow is an end-to-end open source machine learning platform. An integer division by zero error vulnerability exists in the implementation of tf.rawops.SparseReshape in versions prior to Google TensorFlow 2.6.0. No details of the vulnerability are currently available...

Google TensorFlow null pointer dereference vulnerability (CNVD-2021-64073)

Google TensorFlow is an end-to-end open source machine learning platform. tf.rawops.UncompressElement code in versions prior to Google TensorFlow 2.6.0 is vulnerable to null pointer dereference. No detailed vulnerability details are available at this time...

Apple: Image-Detection Backdoor ‘Narrow’ in Scope

Apple provided additional design and security details this week about the planned rollout of a feature aimed at detecting child sexual abuse material CSAM images stored in iCloud Photos. Privacy groups like the Electronic Frontier Foundation warned that the process of flagging CSAM images...

JavaLearnVulnerability

This is a Java vulnerability learning project repository, specifically focused on deserialization vulnerabilities. The repository contains a gadget called "URLDNS" which is used to verify if a target exists a deserialization vulnerability. The gadget is implemented using Java's built-in classes a...

Google TensorFlow buffer overflow vulnerability (CNVD-2021-64529)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A security vulnerability exists in Google TensorFlow that could be exploited to cause TensorFlow to terminate abnormally...

Google TensorFlow Denial of Service Vulnerability (CNVD-2021-63060)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A denial-of-service vulnerability exists in Google Tensorflow, which can be exploited by local attackers to cause a denial of service...

Google TensorFlow Go Denial of Service Vulnerability

Google TensorFlow is an end-to-end open source platform for machine learning from Google Google, Inc. A local attacker can exploit this vulnerability to cause a denial of service situation...

Google TensorFlow Information Disclosure Vulnerability (CNVD-2021-63059)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc...

Google TensorFlow buffer overflow vulnerability (CNVD-2021-64528)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A security vulnerability exists in Google TensorFlow, which stems from the fact that in affected versions, an attacker can cause undefined behavior by binding references to null pointers in...

Google TensorFlow code issue vulnerability (CNVD-2021-64530)

A security vulnerability in Google TensorFlow, an end-to-end open source platform for machine learning from Google, can be exploited to cause undefined behavior by binding references to null pointers in the tf.rawops.Map and tf.rawops. OrderedMap operations to cause undefined behavior by binding ...

Using AI to Scale Spear Phishing

The problem with spear phishing is that it takes time and creativity to create individualized enticing phishing emails. Researchers are using GPT-3 to attempt to solve that problem: The researchers used OpenAIs GPT-3 platform in conjunction with other AI-as-a-service products focused on personali...

CVE-2021-37690

TensorFlow is an end-to-end open source platform for machine learning. In affected versions when running shape functions, some functions such as MutableHashTableShape produce extra output information in the form of a ShapeAndType struct. The shapes embedded in this struct are owned by an inferenc...

Design/Logic Flaw

TensorFlow is an end-to-end open source platform for machine learning. In affected versions when running shape functions, some functions such as MutableHashTableShape produce extra output information in the form of a ShapeAndType struct. The shapes embedded in this struct are owned by an inferenc...

PYSEC-2021-603

TensorFlow is an end-to-end open source platform for machine learning. In affected versions when running shape functions, some functions such as MutableHashTableShape produce extra output information in the form of a ShapeAndType struct. The shapes embedded in this struct are owned by an inferenc...

Google TensorFlow buffer overflow vulnerability (CNVD-2021-64538)

Google TensorFlow is an end-to-end open-source platform for machine learning from Google, Inc. A security vulnerability exists in Google TensorFlow, which could be exploited by an attacker to bind a reference to a null pointer in all operations of type "tf.rawops.MatrixDiagV" to cause undefined...

Google TensorFlow buffer overflow vulnerability (CNVD-2021-64537)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A security vulnerability exists in Google TensorFlow, which could be exploited to cause undefined behavior by binding a reference to a null pointer in "tf.rawops. lead to undefined behavior...

Google TensorFlow buffer overflow vulnerability (CNVD-2021-64536)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A buffer overflow vulnerability exists in Google TensorFlow, which stems from the fact that in affected versions, an attacker could exploit the vulnerability by sending an invalid argument to tf.rawops...

Google TensorFlow Denial of Service Vulnerability (CNVD-2021-63067)

Google TensorFlow is an end-to-end open source machine learning platform. a denial-of-service vulnerability exists in Google TensorFlow. An attacker can exploit this vulnerability to cause a denial of service...