CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Debian CVE•added 2026/05/04 5:6 p.m.•2 views

CVE-2026-42052

Beets is the media library management system. Prior to version 2.10.0, the bundled web UI uses Underscore template interpolation mode for untrusted metadata fields. In this runtime, is raw insertion and HTML escaping is only performed by . Rendered output is then inserted with .html..., allowing...

6CVSS5.7AI score0.00067EPSS

Exploits0

Positive Technologies•added 2026/03/23 12:0 a.m.•4 views

PT-2026-27271

WPGraphQL provides a GraphQL API for WordPress sites. Prior to version 2.10.0, an authorization flaw in updateComment allows an authenticated low-privileged user including a custom role with zero capabilities to change moderation status of their own comment for example to APPROVE without the...

4.3CVSS5.8AI score0.00039EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-6675

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00064EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-6756

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00135EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-6784

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00135EPSS

Exploits0References6

SUSE CVE•added 2023/02/15 3:24 a.m.•2 views

SUSE CVE-2022-35968

TensorFlow is an open source platform for machine learning. The implementation of AvgPoolGrad does not fully validate the input originputshape. This results in a CHECK failure which can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

7.5CVSS7.6AI score0.0007EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:24 a.m.•2 views

SUSE CVE-2022-35966

TensorFlow is an open source platform for machine learning. If QuantizedAvgPool is given mininput or maxinput tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

7.5CVSS7.7AI score0.00064EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:24 a.m.•2 views

SUSE CVE-2022-35991

TensorFlow is an open source platform for machine learning. When TensorListScatter and TensorListScatterV2 receive an elementshape of a rank greater than one, they give a CHECK fail that can trigger a denial of service attack. We have patched the issue in GitHub commit...

7.5CVSS7.7AI score0.00146EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:24 a.m.•1 views

SUSE CVE-2022-36018

TensorFlow is an open source platform for machine learning. If RaggedTensorToVariant is given a rtnestedsplits list that contains tensors of ranks other than one, it results in a CHECK fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

7.5CVSS8.1AI score0.00135EPSS

Exploits0References3

Debian CVE•added 2022/09/16 10:15 p.m.•3 views

CVE-2022-35997

TensorFlow is an open source platform for machine learning. If tf.sparse.cross receives an input separator that is not a scalar, it gives a CHECK fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 83dcb4dbfa094e33db084e97c4d0531a559e0ebf. The f...

7.5CVSS6.8AI score0.00047EPSS

Exploits0

OSV•added 2022/09/16 9:57 p.m.•0 views

GHSA-WQMC-PM8C-2JHC TensorFlow vulnerable to segfault in `Requantize`

Impact If Requantize is given inputmin, inputmax, requestedoutputmin, requestedoutputmax tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. python import tensorflow as tf outtype = tf.quint8 input = tf.constant1, shape=3, dtype=tf.qint32...

5.9CVSS7AI score0.00064EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by