Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2021/11/10 7:1 p.m.0 views

GHSA-CVGX-3V3Q-M36C Heap OOB in shape inference for `QuantizeV2`

Impact The shape inference code for QuantizeV2 can trigger a read outside of bounds of heap allocated array: python import tensorflow as tf @tf.function def test: data=tf.rawops.QuantizeV2 input=1.0,1.0, minrange=1.0,10.0, maxrange=1.0,10.0, T=tf.qint32, mode='MINCOMBINED', roundmode='HALFTOEVEN'...

7.1CVSS5.8AI score0.00019EPSS
Exploits1References7
PyPA
PyPAadded 2021/11/05 9:15 p.m.4 views

PYSEC-2021-620

TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for QuantizeV2 can trigger a read outside of bounds of heap allocated array. This occurs whenever axis is a negative value less than -1. In this case, we are accessing data before the start o...

7.1CVSS7AI score0.00019EPSS
Exploits1References2Affected Software1
CNNVD
CNNVDadded 2021/11/05 12:0 a.m.1 views

Google TensorFlow 缓冲区错误漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google, Inc. in the United States. Google TensorFlow suffers from a buffer error vulnerability that stems from the fact that in the affected version, QuantizeV2's shape inference code could trigger a read...

7.1CVSS7.4AI score0.00019EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2021/11/05 12:0 a.m.1 views

PT-2021-23184 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions 2.6.1 through 2.6.1 TensorFlow versions prior to 2.7.0 Description: The shape inference code for QuantizeV2 can trigger a read outside of bounds of heap allocated array. This occurs whenever axis is a negative value less...

7.1CVSS6.8AI score0.00019EPSS
Exploits1References13
PyPA
PyPAadded 2021/08/12 11:15 p.m.4 views

PYSEC-2021-774

TensorFlow is an end-to-end open source platform for machine learning. In affected versions due to incomplete validation in tf.rawops.QuantizeV2, an attacker can trigger undefined behavior via binding a reference to a null pointer or can access data outside the bounds of heap allocated arrays. Th...

7.8CVSS7AI score0.00013EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2021/08/12 10:45 p.m.1 views

CVE-2021-37663

TensorFlow is an end-to-end open source platform for machine learning. In affected versions due to incomplete validation in tf.rawops.QuantizeV2, an attacker can trigger undefined behavior via binding a reference to a null pointer or can access data outside the bounds of heap allocated arrays. Th...

7.8CVSS6.9AI score0.00013EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2021/08/12 12:0 a.m.7 views

PT-2021-21780 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.6.0 TensorFlow versions 2.5.1 and earlier TensorFlow versions 2.4.3 and earlier TensorFlow versions 2.3.4 and earlier Description: Due to incomplete validation in tf.raw ops.QuantizeV2, an attacker can trigger...

9.3CVSS5.7AI score0.01023EPSS
Exploits5References88
Rows per page
Query Builder