4 matches found
CVE-2024-47262
CVE-2024-47262 describes a race condition in Axis VAPIX API param.cgi that can block access to the web interface of Axis devices running AXIS OS. Affected component: VAPIX param.cgi; affected product family: Axis with AXIS OS (specific versions not enumerated in the provided documents). Root caus...
CVE-2023-21416
Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API dynamicoverlay.cgi was vulnerable to a Denial-of-Service attack allowing for an attacker to block access to the overlay configuration page in the web interface of the Axis device. This flaw can only be exploited...
PYSEC-2022-50
Tensorflow is an Open Source Machine Learning Framework. The implementation of Dequantize does not fully validate the value of axis and can result in heap OOB accesses. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of...
PYSEC-2021-558
TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of tf.rawops.QuantizeAndDequantizeV4Grad is vulnerable to an integer overflow issue caused by converting a signed integer value to an unsigned one and then allocating memory based on thi...