Input validation

gradio is an open source framework for building interactive machine learning models and demos. Prior to version 2.8.11, gradio suffers from Improper Neutralization of Formula Elements in a CSV File. The gradio library has a flagging functionality which saves input/output data into a CSV file on t...

Alluxio has an unspecified vulnerability

Alluxio is Alluxio's to improve the speed of end-to-end distributed machine learning in the cloud. a security vulnerability exists in versions prior to Alluxio 2.7.3, which stems from the failure of the log server to validate input streams. No details of the vulnerability are currently available...

Google TensorFlow code issue vulnerability (CNVD-2022-14996)

Google TensorFlow is an end-to-end open source platform for machine learning from Google Google. Google Tensorflow is vulnerable to a code issue that stems from an undefined behavior in the QuantizedMaxPool implementation, where user-controlled input can trigger a reference binding to a null...

Google TensorFlow numeric error vulnerability (CNVD-2022-14994)

TensorFlow is an end-to-end open source platform for machine learning from Google. Google TensorFlow is vulnerable to a numerical error that could be exploited to crash the TensorFlow process by dividing it by zero...

Google TensorFlow numeric error vulnerability (CNVD-2022-14993)

TensorFlow is an end-to-end open source platform for machine learning from Google. Google TensorFlow is vulnerable to a numerical error that results from the fact that the cost estimator of certain convolution operations can be used to perform an operation divided by zero, and the function fails ...

Google TensorFlow buffer overflow vulnerability (CNVD-2022-11510)

Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google TensorFlow has a buffer overflow vulnerability, which stems from the fact that the implementation of SparseCountSparseOutput is prone to heap overflow and can be exploited by an attacker to cause ...

Google TensorFlow Input Validation Error Vulnerability (CNVD-2022-11504)

Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google Tensorflow suffers from an input validation error vulnerability, which can be exploited by an attacker to cause a CHECK failure denial-of-service based assertion failure and result in a denial of...

Google TensorFlow code issue vulnerability (CNVD-2022-11512)

Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google Tensorflow is vulnerable to a code issue that could be exploited by an attacker to deny service by passing in parameters that would trigger a CHECK failure...

Google TensorFlow Input Validation Error Vulnerability (CNVD-2022-11511)

Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google Tensorflow is vulnerable to an input validation error, which can be exploited by attackers to cause a denial of service...

Google TensorFlow Input Validation Error Vulnerability (CNVD-2022-11508)

Google TensorFlow is an end-to-end open source platform for machine learning from Google Google. Google Tensorflow suffers from an input validation error vulnerability, which stems from the fact that implementations of dequantized shape inference are vulnerable to integer overflow weaknesses, whi...

Google Tensorflow Input Validation Error Vulnerability (CNVD-2022-09897)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, U.S. Google TensorFlow is vulnerable to an input validation error that could be exploited by an attacker to create an operation containing a tensor with enough elements to cause an integer overflow...

Google Tensorflow code issue vulnerability (CNVD-2022-09867)

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a code issue vulnerability that stems from TensorFlow triggering null pointer dereferences if default settings are used when building the XLA compilation cache. No...

Google Tensorflow Code Issue Vulnerability (NVD-C-2022-117042)

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a code issue vulnerability that can be exploited by an attacker to cause a process to crash because it encounters an incorrect StatusOr value and force it to extra...

Google Tensorflow numeric error vulnerability (CNVD-2022-09879)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A numerical error vulnerability exists in Google Tensorflow, which could be exploited by an attacker to create a TFLite model that triggers a division in the "BiasAndClamp" implementation. The...

Google Tensorflow code issue vulnerability (CNVD-2022-09892)

Google TensorFlow is an end-to-end open-source platform for machine learning from Google, a U.S. company. Google TensorFlow is vulnerable to a code issue that could be exploited by an attacker to cause a crash...

Google Tensorflow has an unspecified vulnerability (CNVD-2022-09895)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc...

Google Tensorflow Buffer Overflow Vulnerability (CNVD-2022-09884)

Google TensorFlow is an end-to-end open source platform for machine learning from Google Google. Google Tensorflow is vulnerable to a buffer overflow vulnerability that could be exploited by an attacker to build a TFLite model that allows limited reads and writes to the outside of arrays in TFLit...

Google Tensorflow code issue vulnerability (CNVD-2022-09885)

Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google TensorFlow is vulnerable to a code issue that stems from the fact that TensorFlow may fail to specialize types during shape inference. No detailed vulnerability details are currently available...

Google Tensorflow Input Validation Error Vulnerability (CNVD-2022-09896)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. Google TensorFlow is vulnerable to an input validation error that could be exploited by an attacker to create an operation that contains a tensor with enough elements to cause an integer overflow...

Google Tensorflow buffer overflow vulnerability (CNVD-2022-09899)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A buffer overflow vulnerability exists in Google TensorFlow, which stems from a typo in TensorFlow's SpecializeType that could be exploited by an attacker to read and write outside the bounds of the dat...