Lucene search
+L

9 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 4:51 a.m.12 views

CVE-2021-37664

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can read from outside of bounds of heap allocated data by sending specially crafted illegal arguments to BoostedTreesSparseCalculateBestFeatureSplit. The implementation needs to validate that...

7.3CVSS6.5AI score0.00167EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.4 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4761 more potentially affected by CVE-2021-37664 via tensorflow (>=1.0.1 <=2.3.2)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.6.0, =0.1.6, =1.0.0, =0.0.1, =0.2.0, =0.6.0, =0.1.0, =0.1.0, =0.2.0 and more Source cves: CVE-2021-37664 Source advisory: OSV:GHSA-R4C4-5FPQ-56WG...

7.3CVSS6.1AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.8 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +100 more potentially affected by CVE-2021-37664 via tensorflow-cpu (>=1.15.0 <=2.3.1)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2021-37664 Source advisory: OSV:GHSA-R4C4-5FPQ-56WG...

7.3CVSS6.3AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.7 views

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +164 more potentially affected by CVE-2021-37664 via tensorflow-gpu (>=1.10.1 <=2.3.2)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - cctv-analysis =0.0.2 - chatbot-nlu =1.0.0 - classitransformers =0.0.1 and more Source cves: CVE-2021-37664 Source advisory: OSV:GHSA-R4C4-5FPQ-56WG...

7.3CVSS6.3AI score0.00167EPSS
Exploits0
Circl
Circl
added 2021/08/13 12:40 a.m.7 views

CVE-2021-37664

creationtimestamp| type| source ---|---|--- 2021-08-13 00:40:10+00:00| published-proof-of-concept| https://t.me/cibsecurity/27272...

7.3CVSS5.4AI score0.00167EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2021/08/12 9:15 p.m.4 views

c4v-py (>=0.1.0.dev1 <=0.1.0.dev202107081840) potentially affected by CVE-2021-37664 via tensorflow-cpu (=2.3.1)

tensorflow-cpu PYPI version =2.3.1 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - c4v-py =0.1.0.dev1, =0.1.0.dev202107081840 Source cves: CVE-2021-37664 Source advisory: OSV:PYSEC-2021-577...

7.3CVSS6.3AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 9:15 p.m.5 views

abmarl (>=0.1.1 <=0.1.3), agrothon (>=1.1.5 <=1.3.2) +95 more potentially affected by CVE-2021-37664 via tensorflow (>=2.4.0 <=2.4.2)

tensorflow PYPI version =2.4.0, =0.1.1, =1.1.5, =2.1.0, =0.7.0, =0.0.1, =0.0.6, =0.1.0, =1.4.0, =1.2.2, =20210221.0.0, =0.7.2, =0.7.4 and more Source cves: CVE-2021-37664 Source advisory: OSV:PYSEC-2021-286...

7.3CVSS6.1AI score0.00167EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 9:15 p.m.4 views

accuinsight (>=1.0.62 <=3.0.0rc2), adapt-diagnostics (>=1.2.0 <=1.6.0) +110 more potentially affected by CVE-2021-37664 via tensorflow (>=2.3.0 <=2.3.2)

tensorflow PYPI version =2.3.0, =1.0.62, =1.2.0, =0.1.0, =0.0.1a0, =0.0.1, =1.0.0rc1, =20210206.0.0, =0.1.0.dev1, =0.2.4, =1.0.1.0, =1.0.3 - cardec-cite =1.1.0 and more Source cves: CVE-2021-37664 Source advisory: OSV:PYSEC-2021-286...

7.3CVSS6.1AI score0.00167EPSS
Exploits0
CVE
CVE
added 2021/08/12 8:25 p.m.87 views

CVE-2021-37664

TensorFlow vulnerability CVE-2021-37664: a heap out-of-bounds read can be triggered in BoostedTreesSparseCalculateBestFeatureSplit by sending illegal values to stats_summary_indices. The issue stems from insufficient validation in the boosted trees code path. A patch was committed (e84c9753...) a...

7.3CVSS7AI score0.00167EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder