7041 matches found
Google TensorFlow Integer Overflow Vulnerability
Google TensorFlow is an end-to-end open source machine learning platform. An integer overflow vulnerability exists in the code used to allocate TFLiteIntArray in Google TensorFlow. An attacker can exploit the vulnerability via a specially crafted model to cause dereferencing of invalid pointers...
Google TensorFlow divide-by-zero error vulnerability (CNVD-2021-36349)
Google TensorFlow is an end-to-end open source machine learning platform. A security vulnerability exists in the hash table lookup in Google TensorFlow. No details of the vulnerability are provided at this time...
Google TensorFlow heap out-of-bounds write vulnerability
Google TensorFlow is an end-to-end open source machine learning platform. A heap out-of-bounds write vulnerability exists in ArgMin/ArgMax in Google TensorFlow. No detailed vulnerability details are provided at this time...
Google TensorFlow suffers from an unspecified vulnerability (CNVD-2021-36339)
Google TensorFlow is an end-to-end open source machine learning platform. A security vulnerability exists in the convolutional code in Google TensorFlow. No details of the vulnerability are provided at this time...
Google TensorFlow null pointer dereference vulnerability (CNVD-2021-36337)
Google TensorFlow is an end-to-end open source machine learning platform. A null pointer dereference vulnerability exists in the Reshape operator in Google TensorFlow. No details of the vulnerability are provided at this time...
Google TensorFlow heap out-of-bounds read vulnerability (CNVD-2021-36336)
Google TensorFlow is an end-to-end open source machine learning platform. A heap out-of-bounds read vulnerability exists in the Minimum and Maximum operators in Google TensorFlow. No detailed vulnerability details are currently available...
Google TensorFlow Denial of Service Vulnerability (CNVD-2021-36332)
Google TensorFlow is an end-to-end open source machine learning platform. A security vulnerability exists in pooling in Google TensorFlow. No details of the vulnerability are provided at this time...
Google TensorFlow divide-by-zero error vulnerability (CNVD-2021-36343)
Google TensorFlow is an end-to-end open source machine learning platform. A security vulnerability exists in SVDF in Google TensorFlow. No details of the vulnerability are provided at this time...
Google TensorFlow suffers from an unspecified vulnerability (CNVD-2021-36361)
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from an unspecified vulnerability that stems from passing invalid parameters to tf.rawops.SparseCountSparseOutput.No details of the vulnerability are provided at this...
Google TensorFlow integer overflow vulnerability (CNVD-2021-36346)
Google TensorFlow is an end-to-end open source machine learning platform. An integer overflow vulnerability exists in concatentation in Google TensorFlow. No detailed vulnerability details are provided at this time...
Moodle 输入验证错误漏洞
Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. Moodle suffers from an input validation error vulnerability that stems from insufficient innocent handling of user-supplied data in th...
Google TensorFlow Heap Overflow Vulnerability
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow has a security vulnerability that can be exploited by an attacker to trigger a heap buffer overflow in tf.rawops.BandedTriangularSolve...
Exploit for SQL Injection in Zabbix
This repository is an open-source collection of pre-built vulnerable docker environments, known as Vulhub. It is a collection of vulnerable environments, not a single exploit or tool. The repository contains various vulnerable environments, including CouchDB, ffmpeg, git, and influxdb, among...
CVE-2021-29618
TensorFlow is an end-to-end open source platform for machine learning. Passing a complex argument to tf.transpose at the same time as passing conjugate=True argument results in a crash. The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFl...
CVE-2021-29617
TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service via CHECK-fail in tf.strings.substr with invalid arguments. The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFlow 2.3.3,...
CVE-2021-29613
TensorFlow is an end-to-end open source platform for machine learning. Incomplete validation in tf.rawops.CTCLoss allows an attacker to trigger an OOB read from heap. The fix will be included in TensorFlow 2.5.0. We will also cherrypick these commits on TensorFlow 2.4.2, TensorFlow 2.3.3,...
CVE-2021-29619
TensorFlow is an end-to-end open source platform for machine learning. Passing invalid arguments e.g., discovered via fuzzing to tf.rawops.SparseCountSparseOutput results in segfault. The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFlow...
CVE-2021-29616
TensorFlow is an end-to-end open source platform for machine learning. The implementation of TrySimplifyhttps://github.com/tensorflow/tensorflow/blob/c22d88d6ff33031aa113e48aa3fc9aa74ed79595/tensorflow/core/grappler/optimizers/arithmeticoptimizer.ccL390-L401 has undefined behavior due to...
CVE-2021-29615
TensorFlow is an end-to-end open source platform for machine learning. The implementation of ParseAttrValuehttps://github.com/tensorflow/tensorflow/blob/c22d88d6ff33031aa113e48aa3fc9aa74ed79595/tensorflow/core/framework/attrvalueutil.ccL397-L453 can be tricked into stack overflow due to recursion...
CVE-2021-29614
TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.io.decoderaw produces incorrect results and crashes the Python interpreter when combining fixedlength and wider datatypes. The implementation of the padded...