Lucene search
+L

15 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 4:46 a.m.9 views

CVE-2021-37658

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixSetDiagV. The implementation has incomplete validation that the value of k is a...

7.8CVSS6.7AI score0.00167EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.8 views

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +164 more potentially affected by CVE-2021-37658 via tensorflow-gpu (>=1.10.1 <=2.3.2)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - cctv-analysis =0.0.2 - chatbot-nlu =1.0.0 - classitransformers =0.0.1 and more Source cves: CVE-2021-37658 Source advisory: OSV:GHSA-6P5R-G9MQ-GGH2...

7.8CVSS6.3AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.5 views

alphapulldown (>=0.21.2 <=0.22.3), analytics-lib (>=0.0.1 <=0.0.2) +52 more potentially affected by CVE-2021-37658 via tensorflow (=2.5.0)

tensorflow PYPI version =2.5.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - alphapulldown =0.21.2, =0.0.1, =1.1.0, =0.8.1, =3.3.0, =0.0.24, =1.0.0, =2.0.2, =0.6.0, =0.7.0, =1.4.0 - fancyimpute =0.6.0 and more Source...

7.8CVSS6.3AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.8 views

abmarl (>=0.1.1 <=0.1.3), agrothon (>=1.1.5 <=1.3.2) +95 more potentially affected by CVE-2021-37658 via tensorflow (>=2.4.0 <=2.4.2)

tensorflow PYPI version =2.4.0, =0.1.1, =1.1.5, =2.1.0, =0.7.0, =0.0.1, =0.0.6, =0.1.0, =1.4.0, =1.2.2, =20210221.0.0, =0.7.2, =0.7.4 and more Source cves: CVE-2021-37658 Source advisory: OSV:GHSA-6P5R-G9MQ-GGH2...

7.8CVSS6.2AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.5 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4761 more potentially affected by CVE-2021-37658 via tensorflow (>=1.0.1 <=2.3.2)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.6.0, =0.1.6, =1.0.0, =0.0.1, =0.2.0, =0.6.0, =0.1.0, =0.1.0, =0.2.0 and more Source cves: CVE-2021-37658 Source advisory: OSV:GHSA-6P5R-G9MQ-GGH2...

7.8CVSS6.2AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.6 views

brainhance (=0.0.1), crystal4d (>=0.0.4 <=0.1.2) +4 more potentially affected by CVE-2021-37658 via tensorflow-gpu (>=2.4.0 <=2.4.2)

tensorflow-gpu PYPI version =2.4.0, =0.0.4, =1.1.1, =0.1.0.dev98, =1.0.0, =1.0.1 - tf-yarn-gpu =0.6.3 Source cves: CVE-2021-37658 Source advisory: OSV:GHSA-6P5R-G9MQ-GGH2...

7.8CVSS6.4AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.6 views

complaintclassify (=0.0.9) potentially affected by CVE-2021-37658 via tensorflow-cpu (=2.4.0)

tensorflow-cpu PYPI version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - complaintclassify =0.0.9 Source cves: CVE-2021-37658 Source advisory: OSV:GHSA-6P5R-G9MQ-GGH2...

7.8CVSS6.4AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.7 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +100 more potentially affected by CVE-2021-37658 via tensorflow-cpu (>=1.15.0 <=2.3.1)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2021-37658 Source advisory: OSV:GHSA-6P5R-G9MQ-GGH2...

7.8CVSS6.3AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 9:15 p.m.5 views

brainhance (=0.0.1), crystal4d (>=0.0.4 <=0.1.2) +4 more potentially affected by CVE-2021-37658 via tensorflow-gpu (>=2.4.0 <=2.4.2)

tensorflow-gpu PYPI version =2.4.0, =0.0.4, =1.1.1, =0.1.0.dev98, =1.0.0, =1.0.1 - tf-yarn-gpu =0.6.3 Source cves: CVE-2021-37658 Source advisory: OSV:PYSEC-2021-769...

7.8CVSS6.4AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 9:15 p.m.5 views

deep-floorplan (=0.0.0), mpunet (=0.2.9) +1 more potentially affected by CVE-2021-37658 via tensorflow-gpu (>=2.3.0 <=2.3.2)

tensorflow-gpu PYPI version =2.3.0, =1.1.0, =1.6.1 Source cves: CVE-2021-37658 Source advisory: OSV:PYSEC-2021-769...

7.8CVSS6.4AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 9:15 p.m.7 views

complaintclassify (=0.0.9) potentially affected by CVE-2021-37658 via tensorflow-cpu (=2.4.0)

tensorflow-cpu PYPI version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - complaintclassify =0.0.9 Source cves: CVE-2021-37658 Source advisory: OSV:PYSEC-2021-571...

7.8CVSS6.4AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 9:15 p.m.6 views

c4v-py (>=0.1.0.dev1 <=0.1.0.dev202107081840) potentially affected by CVE-2021-37658 via tensorflow-cpu (=2.3.1)

tensorflow-cpu PYPI version =2.3.1 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - c4v-py =0.1.0.dev1, =0.1.0.dev202107081840 Source cves: CVE-2021-37658 Source advisory: OSV:PYSEC-2021-571...

7.8CVSS6.4AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 9:15 p.m.6 views

abmarl (>=0.1.1 <=0.1.3), agrothon (>=1.1.5 <=1.3.2) +95 more potentially affected by CVE-2021-37658 via tensorflow (>=2.4.0 <=2.4.2)

tensorflow PYPI version =2.4.0, =0.1.1, =1.1.5, =2.1.0, =0.7.0, =0.0.1, =0.0.6, =0.1.0, =1.4.0, =1.2.2, =20210221.0.0, =0.7.2, =0.7.4 and more Source cves: CVE-2021-37658 Source advisory: OSV:PYSEC-2021-280...

7.8CVSS6.2AI score0.00167EPSS
Exploits0
Cvelist
Cvelist
added 2021/08/12 8:50 p.m.32 views

CVE-2021-37658 Reference binding to nullptr in `MatrixSetDiagV*` ops in TensorFlow

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type tf.rawops.MatrixSetDiagV. The implementation has incomplete validation that the value of k is a...

7.1CVSS8.1AI score0.00167EPSS
Exploits0References2
CVE
CVE
added 2021/08/12 8:50 p.m.234 views

CVE-2021-37658

CVE-2021-37658 affects TensorFlow and is tied to a null-pointer binding issue in tf.raw_ops.MatrixSetDiagV* due to incomplete validation of the tensor k. The vulnerability allows undefined behavior when an empty tensor is passed for k, as code accesses the first element without proper checks. The...

7.8CVSS7.3AI score0.00167EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder