Lucene search
+L

13 matches found

redhatcve
redhatcve
added 2026/01/09 9:14 a.m.9 views

CVE-2022-23557

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would trigger a division by zero in BiasAndClamp implementation. There is no check that the biassize is non zero. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on...

6.5CVSS6.7AI score0.00757EPSS
Exploits1References1
vulnersosv
vulnersosv
added 2022/02/09 11:47 p.m.6 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +102 more potentially affected by CVE-2022-23557 via tensorflow-cpu (>=1.15.0 <=2.4.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-23557 Source advisory: OSV:GHSA-GF2J-F278-XH4V...

6.5CVSS6.5AI score0.00757EPSS
Exploits1
vulnersosv
vulnersosv
added 2022/02/09 11:47 p.m.4 views

alwakeupword (=1.0.0), armadillin (>=0.0.2 <=0.53.0) +42 more potentially affected by CVE-2022-23557 via tensorflow (>=2.6.0 <=2.6.2)

tensorflow PYPI version =2.6.0, =0.0.2, =1.0.1, =0.0.9, =0.2.0, =4.4.0, =1.1.2, =0.2.0, =0.0.1, =1.0.0, =1.1.2 - imgtovar =0.8.5 and more Source cves: CVE-2022-23557 Source advisory: OSV:GHSA-GF2J-F278-XH4V...

6.5CVSS6.5AI score0.00757EPSS
Exploits1
vulnersosv
vulnersosv
added 2022/02/09 11:47 p.m.4 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4847 more potentially affected by CVE-2022-23557 via tensorflow (>=1.0.1 <=2.5.2)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.6.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-23557 Source advisory: OSV:GHSA-GF2J-F278-XH4V...

6.5CVSS6.5AI score0.00757EPSS
Exploits1
vulnersosv
vulnersosv
added 2022/02/09 11:47 p.m.5 views

rpnet (>=0.0.1 <=0.1.0), rpnet-dev (>=0.0.5 <=0.0.12) +4 more potentially affected by CVE-2022-23557 via tensorflow-gpu (=2.7.0)

tensorflow-gpu PYPI version =2.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - rpnet =0.0.1, =0.0.5, =1.0.5, =1.1.1 - tpu-tf2 =1.0.0 - troj =1.0.0 Source cves: CVE-2022-23557 Source advisory:...

6.5CVSS6.5AI score0.00757EPSS
Exploits1
vulnersosv
vulnersosv
added 2022/02/09 11:47 p.m.10 views

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-23557 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-23557 Source advisory: OSV:GHSA-GF2J-F278-XH4V...

6.5CVSS6.5AI score0.00757EPSS
Exploits1
vulnersosv
vulnersosv
added 2022/02/09 11:47 p.m.4 views

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +171 more potentially affected by CVE-2022-23557 via tensorflow-gpu (>=1.10.1 <=2.5.1)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 - cctv-analysis =0.0.2 and more Source cves: CVE-2022-23557 Source advisory: OSV:GHSA-GF2J-F278-XH4V...

6.5CVSS6.5AI score0.00757EPSS
Exploits1
nvd
nvd
added 2022/02/04 11:15 p.m.40 views

CVE-2022-23557

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would trigger a division by zero in BiasAndClamp implementation. There is no check that the biassize is non zero. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on...

6.5CVSS0.00757EPSS
Exploits1References3
vulnersosv
vulnersosv
added 2022/02/04 11:15 p.m.6 views

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-23557 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-23557 Source advisory: OSV:PYSEC-2022-121...

6.5CVSS6.5AI score0.00757EPSS
Exploits1
vulnersosv
vulnersosv
added 2022/02/04 11:15 p.m.4 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +102 more potentially affected by CVE-2022-23557 via tensorflow-cpu (>=1.15.0 <=2.4.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-23557 Source advisory: OSV:PYSEC-2022-66...

6.5CVSS6.5AI score0.00757EPSS
Exploits1
cvelist
cvelist
added 2022/02/04 10:32 p.m.32 views

CVE-2022-23557 Division by zero in TFLite

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would trigger a division by zero in BiasAndClamp implementation. There is no check that the biassize is non zero. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on...

6.5CVSS6.7AI score0.00757EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2022/02/04 10:32 p.m.7 views

CVE-2022-23557 Division by zero in TFLite

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would trigger a division by zero in BiasAndClamp implementation. There is no check that the biassize is non zero. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on...

6.5CVSS6.4AI score0.00757EPSS
Exploits1References3
cve
cve
added 2022/02/04 10:32 p.m.137 views

CVE-2022-23557

TensorFlow/TFLite BiasAndClamp vulnerability: a crafted TFLite model can trigger a division by zero due to missing non-zero bias_size checks in BiasAndClamp. The issue affects TFLite in TensorFlow and will be fixed in TensorFlow 2.8.0, with cherry-picks planned for TensorFlow 2.7.1, 2.6.3, and 2....

6.5CVSS6.6AI score0.00757EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder