Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/20 12:0 a.m.58 views

TensorFlow < 2.10.1 Multiple Vulnerabilities

The version of TensorFlow installed on the remote host is prior to 2.10.1. It is, therefore, affected by multiple vulnerabilities as referenced in the release notes. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

9.8CVSS7.5AI score0.00579EPSS
Exploits22References27
Tenable Nessus
Tenable Nessus
added 2023/04/14 12:0 a.m.22 views

FreeBSD : py-tensorflow -- denial of service vulnerability (ae132c6c-d716-11ed-956f-7054d21a9e2a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the ae132c6c-d716-11ed-956f-7054d21a9e2a advisory. - TensorFlow is an open source platform for machine learning. The implementation of...

7.5CVSS7.3AI score0.00441EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2022/11/21 11:51 p.m.29 views

`CHECK` failure in `SobolSample` via missing validation

Impact Another instance of CVE-2022-35935, where SobolSample is vulnerable to a denial of service via assumed scalar inputs, was found and fixed. python import tensorflow as tf tf.rawops.SobolSampledim=tf.constant1,0, numresults=tf.constant1, skip=tf.constant1 Patches We have patched the issue in...

7.5CVSS3AI score0.00441EPSS
Exploits0References2Affected Software3
FreeBSD
FreeBSD
added 2022/11/21 12:0 a.m.24 views

py-tensorflow -- denial of service vulnerability

Kang Hong Jin, Neophytos Christou, 刘力源 and Pattarakrit Rattankul report: Another instance of CVE-2022-35935, where SobolSample is vulnerable to a denial of service via assumed scalar inputs, was found and fixed. Pattarakrit Rattankul reports: Another instance of CVE-2022-35991, where...

7.5CVSS7.4AI score0.00441EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2022/09/16 8:51 p.m.4 views

causalegm (>=0.2.1 <=0.2.5), chrombpnet (>=0.1.0 <=0.1.2) +3 more potentially affected by CVE-2022-35935 via tensorflow-gpu (=2.8.0)

tensorflow-gpu PYPI version =2.8.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - causalegm =0.2.1, =0.1.0, =0.0.6, =2.3.5, =2.4.1 - tlaunch =0.0.2 Source cves: CVE-2022-35935 Source advisory: OSV:GHSA-97P7-W86H-V...

7.5CVSS7.1AI score0.00441EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 8:51 p.m.7 views

animl (>=1.1.2 <=1.1.4), arekit (>=0.21.0 <=0.22.1) +183 more potentially affected by CVE-2022-35935 via tensorflow-gpu (>=1.10.1 <=2.7.0)

tensorflow-gpu PYPI version =1.10.1, =1.1.2, =0.21.0, =0.23.0, =0.9.2, =1.0.0, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 and more Source cves: CVE-2022-35935 Source advisory: OSV:GHSA-97P7-W86H-VCF9...

7.5CVSS7.1AI score0.00441EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 8:51 p.m.7 views

clip-jax (=0.0.5) potentially affected by CVE-2022-35935 via tensorflow-cpu (=2.9.0)

tensorflow-cpu PYPI version =2.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - clip-jax =0.0.5 Source cves: CVE-2022-35935 Source advisory: OSV:GHSA-97P7-W86H-VCF9...

7.5CVSS7.1AI score0.00441EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 8:51 p.m.6 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +103 more potentially affected by CVE-2022-35935 via tensorflow-cpu (>=1.15.0 <=2.7.0)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-35935 Source advisory: OSV:GHSA-97P7-W86H-VCF9...

7.5CVSS7.1AI score0.00441EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 8:51 p.m.7 views

aliby (>=0.1.18 <=0.1.55), aliby-baby (>=0.1.11 <=0.1.17) +29 more potentially affected by CVE-2022-35935 via tensorflow (>=2.9.0 <=2.9.0rc2)

tensorflow PYPI version =2.9.0, =0.1.18, =0.1.11, =0.30.0, =0.0.0, =1.3.0, =0.3.0, =1.0.1, =1.2.0, =0.0.6, =1.0.12, =0.1.0, =0.1.1 and more Source cves: CVE-2022-35935 Source advisory: OSV:GHSA-97P7-W86H-VCF9...

7.5CVSS7.1AI score0.00441EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 8:51 p.m.3 views

acuity (=6.18.0), acuitypro (=6.18.0) +60 more potentially affected by CVE-2022-35935 via tensorflow (>=2.8.0 <=2.8.0rc1)

tensorflow PYPI version =2.8.0, =1.2.8, =1.0.43, =0.2.2, =0.0.1, =0.0.2, =0.2.8, =0.14.0, =0.1.3, =0.0.9, =0.2.27, =0.2.41 - complaintclassify =0.0.5 - conversational-sentence-encoder =0.0.6 and more Source cves: CVE-2022-35935 Source advisory: OSV:GHSA-97P7-W86H-VCF9...

7.5CVSS7.1AI score0.00441EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 8:51 p.m.8 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4899 more potentially affected by CVE-2022-35935 via tensorflow (>=1.0.1 <=2.7.1)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.5.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-35935 Source advisory: OSV:GHSA-97P7-W86H-VCF9...

7.5CVSS7.3AI score0.00441EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2022/09/16 7:35 p.m.8 views

CVE-2022-35935 `CHECK` failure in `SobolSample` via missing validation in TensorFlow

TensorFlow is an open source platform for machine learning. The implementation of SobolSampleOp is vulnerable to a denial of service via CHECK-failure assertion failure caused by assuming input0, input1, and input2 to be scalar. This issue has been patched in GitHub commit...

5.9CVSS7.4AI score0.00441EPSS
Exploits0References2
CVE
CVE
added 2022/09/16 7:35 p.m.106 views

CVE-2022-35935

CVE-2022-35935 affects TensorFlow via SobolSampleOp triggering a denial of service from a misvalidation that assumes input(0), input(1), and input(2) are scalar, causing a CHECK failure. The issue has been patched in the GitHub commit c65c67f88ad770662e8f191269a907bf2b94b1bf, with the fix slated ...

7.5CVSS6.3AI score0.00441EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder