Lucene search
+L

10 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 4:48 a.m.8 views

CVE-2021-37666

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in tf.rawops.RaggedTensorToVariant. The implementation has an incomplete validation of the splits values, missing the case...

7.8CVSS6.5AI score0.00173EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.6 views

alphapulldown (>=0.21.2 <=0.22.3), analytics-lib (>=0.0.1 <=0.0.2) +52 more potentially affected by CVE-2021-37666 via tensorflow (=2.5.0)

tensorflow PYPI version =2.5.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - alphapulldown =0.21.2, =0.0.1, =1.1.0, =0.8.1, =3.3.0, =0.0.24, =1.0.0, =2.0.2, =0.6.0, =0.7.0, =1.4.0 - fancyimpute =0.6.0 and more Source...

7.8CVSS6.3AI score0.00173EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.3 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +100 more potentially affected by CVE-2021-37666 via tensorflow-cpu (>=1.15.0 <=2.3.1)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2021-37666 Source advisory: OSV:GHSA-W4XF-2PQW-5MQ7...

7.8CVSS6.3AI score0.00173EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.12 views

brainhance (=0.0.1), crystal4d (>=0.0.4 <=0.1.2) +4 more potentially affected by CVE-2021-37666 via tensorflow-gpu (>=2.4.0 <=2.4.2)

tensorflow-gpu PYPI version =2.4.0, =0.0.4, =1.1.1, =0.1.0.dev98, =1.0.0, =1.0.1 - tf-yarn-gpu =0.6.3 Source cves: CVE-2021-37666 Source advisory: OSV:GHSA-W4XF-2PQW-5MQ7...

7.8CVSS6.4AI score0.00173EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.4 views

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +164 more potentially affected by CVE-2021-37666 via tensorflow-gpu (>=1.10.1 <=2.3.2)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - cctv-analysis =0.0.2 - chatbot-nlu =1.0.0 - classitransformers =0.0.1 and more Source cves: CVE-2021-37666 Source advisory: OSV:GHSA-W4XF-2PQW-5MQ7...

7.8CVSS6.3AI score0.00173EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 10:15 p.m.6 views

complaintclassify (=0.0.9) potentially affected by CVE-2021-37666 via tensorflow-cpu (=2.4.0)

tensorflow-cpu PYPI version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - complaintclassify =0.0.9 Source cves: CVE-2021-37666 Source advisory: OSV:PYSEC-2021-579...

7.8CVSS6.4AI score0.00173EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 10:15 p.m.5 views

deep-floorplan (=0.0.0), mpunet (=0.2.9) +1 more potentially affected by CVE-2021-37666 via tensorflow-gpu (>=2.3.0 <=2.3.2)

tensorflow-gpu PYPI version =2.3.0, =1.1.0, =1.6.1 Source cves: CVE-2021-37666 Source advisory: OSV:PYSEC-2021-777...

7.8CVSS6.4AI score0.00173EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 10:15 p.m.4 views

c4v-py (>=0.1.0.dev1 <=0.1.0.dev202107081840) potentially affected by CVE-2021-37666 via tensorflow-cpu (=2.3.1)

tensorflow-cpu PYPI version =2.3.1 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - c4v-py =0.1.0.dev1, =0.1.0.dev202107081840 Source cves: CVE-2021-37666 Source advisory: OSV:PYSEC-2021-579...

7.8CVSS6.4AI score0.00173EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/12 10:15 p.m.5 views

accuinsight (>=1.0.62 <=3.0.0rc2), adapt-diagnostics (>=1.2.0 <=1.6.0) +110 more potentially affected by CVE-2021-37666 via tensorflow (>=2.3.0 <=2.3.2)

tensorflow PYPI version =2.3.0, =1.0.62, =1.2.0, =0.1.0, =0.0.1a0, =0.0.1, =1.0.0rc1, =20210206.0.0, =0.1.0.dev1, =0.2.4, =1.0.1.0, =1.0.3 - cardec-cite =1.1.0 and more Source cves: CVE-2021-37666 Source advisory: OSV:PYSEC-2021-288...

7.8CVSS6.2AI score0.00173EPSS
Exploits0
CVE
CVE
added 2021/08/12 9:40 p.m.98 views

CVE-2021-37666

CVE-2021-37666 is a TensorFlow vulnerability in RaggedTensorToVariant where binding a reference to a null pointer occurs due to incomplete validation of splits values. The issue is addressed by the GitHub patch be7a4de6adfbd303ce08be4332554dff70362612, with the fix scheduled for TensorFlow 2.6.0 ...

7.8CVSS7.7AI score0.00173EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder