Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:39 a.m.12 views

CVE-2022-35937

TensorFlow is an open source platform for machine learning. The GatherNd function takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read is triggered. This issue has been patched in...

9.1CVSS6.6AI score0.00441EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/09/16 9:4 p.m.4 views

causalegm (>=0.2.1 <=0.2.5), chrombpnet (>=0.1.0 <=0.1.2) +3 more potentially affected by CVE-2022-35937 via tensorflow-gpu (=2.8.0)

tensorflow-gpu PYPI version =2.8.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - causalegm =0.2.1, =0.1.0, =0.0.6, =2.3.5, =2.4.1 - tlaunch =0.0.2 Source cves: CVE-2022-35937 Source advisory: OSV:GHSA-PXRW-J2FV-H...

9.1CVSS7.2AI score0.00441EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 9:4 p.m.4 views

clip-jax (=0.0.5) potentially affected by CVE-2022-35937 via tensorflow-cpu (=2.9.0)

tensorflow-cpu PYPI version =2.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - clip-jax =0.0.5 Source cves: CVE-2022-35937 Source advisory: OSV:GHSA-PXRW-J2FV-HX3H...

9.1CVSS7.2AI score0.00441EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 9:4 p.m.4 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +103 more potentially affected by CVE-2022-35937 via tensorflow-cpu (>=1.15.0 <=2.7.0)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-35937 Source advisory: OSV:GHSA-PXRW-J2FV-HX3H...

9.1CVSS7.2AI score0.00441EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/09/16 9:4 p.m.7 views

aliby (>=0.1.18 <=0.1.55), aliby-baby (>=0.1.11 <=0.1.17) +29 more potentially affected by CVE-2022-35937 via tensorflow (>=2.9.0 <=2.9.0rc2)

tensorflow PYPI version =2.9.0, =0.1.18, =0.1.11, =0.30.0, =0.0.0, =1.3.0, =0.3.0, =1.0.1, =1.2.0, =0.0.6, =1.0.12, =0.1.0, =0.1.1 and more Source cves: CVE-2022-35937 Source advisory: OSV:GHSA-PXRW-J2FV-HX3H...

9.1CVSS7.2AI score0.00441EPSS
Exploits0
NVD
NVD
added 2022/09/16 8:15 p.m.29 views

CVE-2022-35937

TensorFlow is an open source platform for machine learning. The GatherNd function takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read is triggered. This issue has been patched in...

9.1CVSS0.00441EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/09/16 7:40 p.m.6 views

CVE-2022-35937 OOB read in `Gather_nd` op in TensorFlow Lite

TensorFlow is an open source platform for machine learning. The GatherNd function takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read is triggered. This issue has been patched in...

7CVSS9.2AI score0.00441EPSS
Exploits0References3
CVE
CVE
added 2022/09/16 7:40 p.m.86 views

CVE-2022-35937

TensorFlow Lite GatherNd contains an out-of-bounds read when input indices can exceed output sizes. The issue is fixed via patch 595a65a3e224a0362d7e68c2213acfc2b499a196, with the fix planned for TensorFlow 2.10.0 and cherry-picks for 2.9.1, 2.8.1, and 2.7.2 (all in the supported range). There ar...

9.1CVSS8.1AI score0.00441EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder