Lucene search
K

10 matches found

vulnersOsv
vulnersOsv
added 2022/05/24 10:13 p.m.7 views

lsmmdma (>=0.0.4 <=0.1.7), tpu-tf2 (=1.0.0) potentially affected by CVE-2022-29206 via tensorflow-cpu (=2.7.0)

tensorflow-cpu PYPI version =2.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - lsmmdma =0.0.4, =0.1.7 - tpu-tf2 =1.0.0 Source cves: CVE-2022-29206 Source advisory: OSV:GHSA-RC9W-5C64-9VQQ...

5.5CVSS6AI score0.00338EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/24 10:13 p.m.4 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4878 more potentially affected by CVE-2022-29206 via tensorflow (>=1.0.1 <=2.6.3)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.6.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-29206 Source advisory: OSV:GHSA-RC9W-5C64-9VQQ...

5.5CVSS5.9AI score0.00338EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/24 10:13 p.m.2 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +102 more potentially affected by CVE-2022-29206 via tensorflow-cpu (>=1.15.0 <=2.5.3)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-29206 Source advisory: OSV:GHSA-RC9W-5C64-9VQQ...

5.5CVSS6AI score0.00338EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/24 10:13 p.m.7 views

acuity (=6.18.0), acuitypro (=6.18.0) +60 more potentially affected by CVE-2022-29206 via tensorflow (>=2.8.0 <=2.8.0rc1)

tensorflow PYPI version =2.8.0, =1.2.8, =1.0.43, =0.2.2, =0.0.1, =0.0.2, =0.2.8, =0.14.0, =0.1.3, =0.0.9, =0.2.27, =0.2.41 - complaintclassify =0.0.5 - conversational-sentence-encoder =0.0.6 and more Source cves: CVE-2022-29206 Source advisory: OSV:GHSA-RC9W-5C64-9VQQ...

5.5CVSS6AI score0.00338EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/24 10:13 p.m.3 views

aadhaar-detection (=0.5.0), accuinsight (>=1.0.84 <=1.0.87) +39 more potentially affected by CVE-2022-29206 via tensorflow (>=2.7.0 <=2.7.1)

tensorflow PYPI version =2.7.0, =1.0.84, =3.0.22, =0.1.11, =0.1.11, =0.1.11, =0.1.0, =0.0.1, =1.2.1, =0.1.5.dev202303131412, =0.1.0, =0.1.1 and more Source cves: CVE-2022-29206 Source advisory: OSV:GHSA-RC9W-5C64-9VQQ...

5.5CVSS6AI score0.00338EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/24 10:13 p.m.9 views

causalegm (>=0.2.1 <=0.2.5), chrombpnet (>=0.1.0 <=0.1.2) +3 more potentially affected by CVE-2022-29206 via tensorflow-gpu (=2.8.0)

tensorflow-gpu PYPI version =2.8.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - causalegm =0.2.1, =0.1.0, =0.0.6, =2.3.5, =2.4.1 - tlaunch =0.0.2 Source cves: CVE-2022-29206 Source advisory: OSV:GHSA-RC9W-5C64-9...

5.5CVSS6AI score0.00338EPSS
Exploits1
NVD
NVD
added 2022/05/20 11:15 p.m.30 views

CVE-2022-29206

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.SparseTensorDenseAdd does not fully validate the input arguments. In this case, a reference gets bound to a nullptr during kernel execution. This is...

5.5CVSS0.00338EPSS
Exploits1References7
CVE
CVE
added 2022/05/20 10:15 p.m.119 views

CVE-2022-29206

CVE-2022-29206 involves TensorFlow’s tf.raw_ops.SparseTensorDenseAdd, where input argument validation is insufficient, causing a reference to a nullptr during kernel execution and resulting in undefined behavior. Affected releases include TensorFlow versions prior to 2.9.0, and also 2.8.1, 2.7.2,...

5.5CVSS5.5AI score0.00338EPSS
Exploits1References7Affected Software1
Vulnrichment
Vulnrichment
added 2022/05/20 10:15 p.m.5 views

CVE-2022-29206 Missing validation results in undefined behavior in `SparseTensorDenseAdd` in TensorFlow

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.SparseTensorDenseAdd does not fully validate the input arguments. In this case, a reference gets bound to a nullptr during kernel execution. This is...

5.5CVSS5.7AI score0.00338EPSS
Exploits1References7
OSV
OSV
added 2022/05/20 10:15 p.m.18 views

CVE-2022-29206 Missing validation results in undefined behavior in `SparseTensorDenseAdd` in TensorFlow

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.SparseTensorDenseAdd does not fully validate the input arguments. In this case, a reference gets bound to a nullptr during kernel execution. This is...

5.5CVSS5.4AI score0.00338EPSS
Exploits1References9
Rows per page
Query Builder