Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:44 a.m.8 views

CVE-2022-23563

Tensorflow is an Open Source Machine Learning Framework. In multiple places, TensorFlow uses tempfile.mktemp to create temporary files. While this is acceptable in testing, in utilities and libraries it is dangerous as a different process can create the file between the check for the filename in...

7.1CVSS6.6AI score0.0011EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/02/09 11:54 p.m.7 views

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-23563 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-23563 Source advisory: OSV:GHSA-WC4G-R73W-X8MM...

7.1CVSS6.7AI score0.0011EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/02/09 11:54 p.m.4 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +102 more potentially affected by CVE-2022-23563 via tensorflow-cpu (>=1.15.0 <=2.4.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-23563 Source advisory: OSV:GHSA-WC4G-R73W-X8MM...

7.1CVSS6.7AI score0.0011EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/02/09 11:54 p.m.5 views

lsmmdma (>=0.0.4 <=0.1.7), tpu-tf2 (=1.0.0) potentially affected by CVE-2022-23563 via tensorflow-cpu (=2.7.0)

tensorflow-cpu PYPI version =2.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - lsmmdma =0.0.4, =0.1.7 - tpu-tf2 =1.0.0 Source cves: CVE-2022-23563 Source advisory: OSV:GHSA-WC4G-R73W-X8MM...

7.1CVSS6.7AI score0.0011EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/02/09 11:54 p.m.5 views

aadhaar-detection (=0.5.0), accuinsight (>=1.0.84 <=1.0.87) +38 more potentially affected by CVE-2022-23563 via tensorflow (>=2.7.0 <=2.7.0rc1)

tensorflow PYPI version =2.7.0, =1.0.84, =3.0.22, =0.1.11, =0.1.11, =0.1.11, =0.1.0, =0.0.1, =0.1.5.dev202303131412, =0.1.0, =0.1.1 and more Source cves: CVE-2022-23563 Source advisory: OSV:GHSA-WC4G-R73W-X8MM...

7.1CVSS6.7AI score0.0011EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/02/09 11:54 p.m.4 views

rpnet (>=0.0.1 <=0.1.0), rpnet-dev (>=0.0.5 <=0.0.12) +4 more potentially affected by CVE-2022-23563 via tensorflow-gpu (=2.7.0)

tensorflow-gpu PYPI version =2.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - rpnet =0.0.1, =0.0.5, =1.0.5, =1.1.1 - tpu-tf2 =1.0.0 - troj =1.0.0 Source cves: CVE-2022-23563 Source advisory:...

7.1CVSS6.7AI score0.0011EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/02/09 11:54 p.m.11 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4847 more potentially affected by CVE-2022-23563 via tensorflow (>=1.0.1 <=2.5.2)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.6.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-23563 Source advisory: OSV:GHSA-WC4G-R73W-X8MM...

7.1CVSS6.7AI score0.0011EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/02/04 11:15 p.m.7 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +102 more potentially affected by CVE-2022-23563 via tensorflow-cpu (>=1.15.0 <=2.4.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-23563 Source advisory: OSV:PYSEC-2022-72...

7.1CVSS6.7AI score0.0011EPSS
Exploits0
CVE
CVE
added 2022/02/04 10:32 p.m.110 views

CVE-2022-23563

TensorFlow (CVE-2022-23563) describes a TOCTOU race caused by tempfile.mktemp usage, where a temporary file could be created by another process between the check and the actual creation. Several connected sources confirm this insecure temporary-file pattern and note that the fix replaces mktemp w...

7.1CVSS6.4AI score0.0011EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder