Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 1:15 a.m.6 views

CVE-2022-21730

Tensorflow is an Open Source Machine Learning Framework. The implementation of FractionalAvgPoolGrad does not consider cases where the input tensors are invalid allowing an attacker to read from outside of bounds of heap. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this...

8.1CVSS6.5AI score0.00815EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2022/02/09 6:29 p.m.5 views

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-21730 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-21730 Source advisory: OSV:GHSA-VJG4-V33C-GGC4...

8.1CVSS7.2AI score0.00815EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/09 6:29 p.m.5 views

aadhaar-detection (=0.5.0), accuinsight (>=1.0.84 <=1.0.87) +38 more potentially affected by CVE-2022-21730 via tensorflow (>=2.7.0 <=2.7.0rc1)

tensorflow PYPI version =2.7.0, =1.0.84, =3.0.22, =0.1.11, =0.1.11, =0.1.11, =0.1.0, =0.0.1, =0.1.5.dev202303131412, =0.1.0, =0.1.1 and more Source cves: CVE-2022-21730 Source advisory: OSV:GHSA-VJG4-V33C-GGC4...

8.1CVSS7.2AI score0.00815EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/09 6:29 p.m.5 views

alwakeupword (=1.0.0), armadillin (>=0.0.2 <=0.53.0) +42 more potentially affected by CVE-2022-21730 via tensorflow (>=2.6.0 <=2.6.2)

tensorflow PYPI version =2.6.0, =0.0.2, =1.0.1, =0.0.9, =0.2.0, =4.4.0, =1.1.2, =0.2.0, =0.0.1, =1.0.0, =1.1.2 - imgtovar =0.8.5 and more Source cves: CVE-2022-21730 Source advisory: OSV:GHSA-VJG4-V33C-GGC4...

8.1CVSS7.2AI score0.00815EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/09 6:29 p.m.7 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4847 more potentially affected by CVE-2022-21730 via tensorflow (>=1.0.1 <=2.5.2)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.6.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-21730 Source advisory: OSV:GHSA-VJG4-V33C-GGC4...

8.1CVSS7.4AI score0.00815EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/09 6:29 p.m.4 views

rpnet (>=0.0.1 <=0.1.0), rpnet-dev (>=0.0.5 <=0.0.12) +4 more potentially affected by CVE-2022-21730 via tensorflow-gpu (=2.7.0)

tensorflow-gpu PYPI version =2.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - rpnet =0.0.1, =0.0.5, =1.0.5, =1.1.1 - tpu-tf2 =1.0.0 - troj =1.0.0 Source cves: CVE-2022-21730 Source advisory:...

8.1CVSS7.2AI score0.00815EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/09 6:29 p.m.5 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +102 more potentially affected by CVE-2022-21730 via tensorflow-cpu (>=1.15.0 <=2.4.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-21730 Source advisory: OSV:GHSA-VJG4-V33C-GGC4...

8.1CVSS7.2AI score0.00815EPSS
Exploits1
NVD
NVD
added 2022/02/03 11:15 a.m.22 views

CVE-2022-21730

Tensorflow is an Open Source Machine Learning Framework. The implementation of FractionalAvgPoolGrad does not consider cases where the input tensors are invalid allowing an attacker to read from outside of bounds of heap. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this...

8.1CVSS0.00815EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2022/02/03 11:15 a.m.8 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +102 more potentially affected by CVE-2022-21730 via tensorflow-cpu (>=1.15.0 <=2.4.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-21730 Source advisory: OSV:PYSEC-2022-54...

8.1CVSS7.2AI score0.00815EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/03 11:15 a.m.15 views

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +171 more potentially affected by CVE-2022-21730 via tensorflow-gpu (>=1.10.1 <=2.5.1)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 - cctv-analysis =0.0.2 and more Source cves: CVE-2022-21730 Source advisory: OSV:PYSEC-2022-109...

8.1CVSS7.2AI score0.00815EPSS
Exploits1
CVE
CVE
added 2022/02/03 10:48 a.m.100 views

CVE-2022-21730

Summary: CVE-2022-21730 describes an out-of-bounds read in TensorFlow’s FractionalAvgPoolGrad due to invalid input handling. This affects TensorFlow releases prior to the fixed patch and is resolved by the fix in TensorFlow 2.8.0, with cherry-picks to 2.7.1, 2.6.3, and 2.5.3. Affected component: ...

8.1CVSS7.9AI score0.00815EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/02/03 10:48 a.m.6 views

CVE-2022-21730 Out of bounds read in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of FractionalAvgPoolGrad does not consider cases where the input tensors are invalid allowing an attacker to read from outside of bounds of heap. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this...

8.1CVSS8AI score0.00815EPSS
Exploits1References3
Rows per page
Query Builder