CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSSF Malicious Packages•added 2022/06/20 8:15 p.m.•4 views

Malicious code in tensorflow-js-website (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dbe94795c766f0a4d3c94608924b1fd354b5ec753d4f31f7afc3b411173c00c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

vulnersOsv•added 2020/12/10 7:7 p.m.•1 views

tensorflowjs (>=1.5.2 <=1.7.4) potentially affected by CVE-2020-26268 via tensorflow-cpu (=2.1.0)

tensorflow-cpu PYPI version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - tensorflowjs =1.5.2, =1.7.4 Source cves: CVE-2020-26268 Source advisory: OSV:GHSA-HHVC-G5HV-48C6...

4.4CVSS5.8AI score0.00018EPSS

Exploits1

vulnersOsv•added 2020/09/25 7:15 p.m.•1 views

tensorflowjs (>=1.5.2 <=1.7.4) potentially affected by CVE-2020-15205 via tensorflow-cpu (=2.1.0)

9.8CVSS7.2AI score0.00544EPSS

Exploits1

vulnersOsv•added 2020/09/25 6:28 p.m.•1 views

tensorflowjs (>=1.5.2 <=1.7.4) potentially affected by CVE-2020-15209 via tensorflow-cpu (=2.1.0)

5.9CVSS6.5AI score0.00357EPSS

Exploits1

vulnersOsv•added 2020/09/25 6:28 p.m.•0 views

tensorflowjs (>=1.5.2 <=1.7.4) potentially affected by CVE-2020-15207 via tensorflow-cpu (=2.1.0)