Lucene search
K

389 matches found

CVE
CVE
added 2022/11/18 12:0 a.m.97 views

CVE-2022-41894

CVE-2022-41894 affects TensorFlow/TFLite CONV_3D_TRANSPOSE reference kernel. The bug increments data_ptr by num_channels instead of output_num_channels, enabling an out-of-bounds write to the bias buffer when input channels exceed output channels. Attack requires using the reference kernel resolv...

8.1CVSS7.5AI score0.00523EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/11/18 12:0 a.m.4 views

PT-2022-26125

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.11 TensorFlow versions 2.10.1 and earlier TensorFlow versions 2.9.3 and earlier TensorFlow versions 2.8.4 and earlier Description The reference kernel of the CONV 3D TRANSPOSE TensorFlow Lite operator wrongly...

8.1CVSS7.4AI score0.00523EPSS
Exploits1References15
OSV
OSV
added 2022/09/16 9:6 p.m.44 views

GHSA-79H2-Q768-FPXR TensorFlow segfault TFLite converter on per-channel quantized transposed convolutions

Impact When converting transposed convolutions using per-channel weight quantization the converter segfaults and crashes the Python process. python import tensorflow as tf class QuantConv2DTransposedtf.keras.layers.Layer: def buildself, inputshape: self.kernel = self.addweight"kernel", 3, 3,...

5.9CVSS5.8AI score0.00596EPSS
Exploits1References6
OSV
OSV
added 2022/09/16 9:4 p.m.53 views

GHSA-FFJM-4QWC-7CMF TensorFlow vulnerable to OOB write in `scatter_nd` in TF Lite

Impact The ScatterNd function takes an input argument that determines the indices of of the output tensor. An input index greater than the output tensor or less than zero will either write content at the wrong index or trigger a crash. Patches We have patched the issue in GitHub commit...

7CVSS7AI score0.00441EPSS
Exploits0References6
OSV
OSV
added 2022/09/16 9:4 p.m.2 views

GHSA-PXRW-J2FV-HX3H TensorFlow vulnerable to OOB read in `Gather_nd` in TF Lite

Impact The GatherNd function takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read is triggered. Patches We have patched the issue in GitHub commit...

7CVSS5.8AI score0.00441EPSS
Exploits0References6
Cvelist
Cvelist
added 2022/09/16 7:40 p.m.38 views

CVE-2022-35937 OOB read in `Gather_nd` op in TensorFlow Lite

TensorFlow is an open source platform for machine learning. The GatherNd function takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read is triggered. This issue has been patched in...

7CVSS9.4AI score0.00441EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/09/16 7:40 p.m.6 views

CVE-2022-35937 OOB read in `Gather_nd` op in TensorFlow Lite

TensorFlow is an open source platform for machine learning. The GatherNd function takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read is triggered. This issue has been patched in...

7CVSS9.2AI score0.00441EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/09/16 7:40 p.m.7 views

CVE-2022-35939 Out of bounds write in `scatter_nd` op in TensorFlow Lite

TensorFlow is an open source platform for machine learning. The ScatterNd function takes an input argument that determines the indices of of the output tensor. An input index greater than the output tensor or less than zero will either write content at the wrong index or trigger a crash. We have...

7CVSS9.6AI score0.00441EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/09/16 7:40 p.m.45 views

CVE-2022-35939 Out of bounds write in `scatter_nd` op in TensorFlow Lite

TensorFlow is an open source platform for machine learning. The ScatterNd function takes an input argument that determines the indices of of the output tensor. An input index greater than the output tensor or less than zero will either write content at the wrong index or trigger a crash. We have...

7CVSS9.8AI score0.00441EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/09/16 7:35 p.m.4 views

CVE-2022-35938 OOB read in `Gather_nd` op in TensorFlow Lite Micro

TensorFlow is an open source platform for machine learning. The GatherNd function takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read or a crash is triggered. This issue has been...

7CVSS9.2AI score0.00448EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/05/21 12:0 a.m.5 views

Google TensorFlow输入验证错误漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. An input validation error vulnerability exists in Google TensorFlow versions prior to 2.9.0, prior to 2.8.1, prior to 2.7.2, and prior to 2.6.4, which stems from a vulnerability that can be...

5.5CVSS5.7AI score0.00316EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2022/05/20 12:0 a.m.6 views

PT-2022-19465

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.9.0 TensorFlow versions prior to 2.8.1 TensorFlow versions prior to 2.7.2 TensorFlow versions prior to 2.6.4 Description TensorFlow is an open source platform for machine learning. Certain TFLite models that were...

5.5CVSS6.2AI score0.00316EPSS
Exploits1References18
OSV
OSV
added 2022/02/09 11:53 p.m.13 views

GHSA-4HVF-HXVG-F67V Read and Write outside of bounds in TensorFlow

Impact An attacker can craft a TFLite model that would allow limited reads and writes outside of arrays in TFLite. This exploits missing validation in the conversion from sparse tensors to dense tensors. Patches We have patched the issue in GitHub commit 6364463d6f5b6254cac3d6aedf999b6a96225038...

8.8CVSS7AI score0.00837EPSS
Exploits1References7
OSV
OSV
added 2022/02/09 11:52 p.m.3 views

GHSA-98P5-X8X4-C9M5 Integer overflow in TFLite

Impact An attacker can craft a TFLite model that would cause an integer overflow in embedding lookup operations: cc int embeddingsize = 1; int lookupsize = 1; for int i = 0; i data.i32i; lookupsize = dim; outputshape-datak = dim; for int i = 1; i datak = dim; Both embeddingsize and lookupsize are...

8.8CVSS7.1AI score0.01173EPSS
Exploits1References9
OSV
OSV
added 2022/02/09 11:52 p.m.8 views

GHSA-9GWQ-6CWJ-47H3 Integer overflow in TFLite array creation

Impact An attacker can craft a TFLite model that would cause an integer overflow in TfLiteIntArrayCreate: cc TfLiteIntArray TfLiteIntArrayCreateint size int allocsize = TfLiteIntArrayGetSizeInBytessize; // ... TfLiteIntArray ret = TfLiteIntArraymallocallocsize; // ... The...

7.6CVSS7.1AI score0.00811EPSS
Exploits1References8
OSV
OSV
added 2022/02/09 11:47 p.m.3 views

GHSA-GF2J-F278-XH4V Division by zero in TFLite

Impact An attacker can craft a TFLite model that would trigger a division by zero in BiasAndClamp implementation: cc inline void BiasAndClampfloat clampmin, float clampmax, int biassize, const float biasdata, int arraysize, float arraydata // ... TFLITEDCHECKEQarraysize % biassize, 0; // ... Ther...

7.1CVSS6.5AI score0.00757EPSS
Exploits1References7
OSV
OSV
added 2022/02/09 11:47 p.m.9 views

GHSA-428X-9XC2-M8MJ Division by zero in TFLite

Impact An attacker can craft a TFLite model that would trigger a division by zero in the implementation of depthwise convolutions. The parameters of the convolution can be user controlled and are also used within a division operation to determine the size of the padding that needs to be added...

7.1CVSS5.8AI score0.00821EPSS
Exploits1References7
PyPA
PyPA
added 2022/02/04 11:15 p.m.7 views

PYSEC-2022-122

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause an integer overflow in TfLiteIntArrayCreate. The TfLiteIntArrayGetSizeInBytes returns an int instead of a sizet. An attacker can control model inputs such that computedsize overflows the...

8.8CVSS7.2AI score0.00811EPSS
Exploits1References4Affected Software1
PyPA
PyPA
added 2022/02/04 11:15 p.m.7 views

PYSEC-2022-69

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would allow limited reads and writes outside of arrays in TFLite. This exploits missing validation in the conversion from sparse tensors to dense tensors. The fix is included in TensorFlow 2.8.0. We...

8.8CVSS6.8AI score0.00837EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2022/02/04 11:15 p.m.8 views

PYSEC-2022-68

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause an integer overflow in embedding lookup operations. Both embeddingsize and lookupsize are products of values provided by the user. Hence, a malicious user could trigger overflows in the...

8.8CVSS7.1AI score0.01173EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder