Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:51 p.m.7 views

CVE-2022-41908

TensorFlow is an open source platform for machine learning. An input token that is not a UTF-8 bytestring will trigger a CHECK fail in tf.rawops.PyFunc. We have patched the issue in GitHub commit 9f03a9d3bafe902c1e6beb105b2f24172f238645. The fix will be included in TensorFlow 2.11. We will also...

7.5CVSS6.7AI score0.0045EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/05/20 12:0 a.m.58 views

TensorFlow < 2.10.1 Multiple Vulnerabilities

The version of TensorFlow installed on the remote host is prior to 2.10.1. It is, therefore, affected by multiple vulnerabilities as referenced in the release notes. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

9.8CVSS7.5AI score0.00579EPSS
Exploits22References27
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.32 views

CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41908)

The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41908 advisory. - TensorFlow is an open source platform for machine learning. An input token that is not a UTF-8 bytestrin...

7.5CVSS7.6AI score0.0045EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2022/12/09 8:3 p.m.37 views

CVE-2022-41908 affecting package tensorflow for versions less than 2.11.0-1

CVE-2022-41908 affecting package tensorflow for versions less than 2.11.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.7AI score0.0045EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/11/21 10:9 p.m.4 views

aggmap (>=1.1.1 <=1.2.1), molmap (>=1.3.1 <=1.4.0) potentially affected by CVE-2022-41908 via tensorflow-gpu (=2.9.1)

tensorflow-gpu PYPI version =2.9.1 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - aggmap =1.1.1, =1.3.1, =1.4.0 Source cves: CVE-2022-41908 Source advisory: OSV:GHSA-MV77-9G28-CWG3...

7.5CVSS7.1AI score0.0045EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/11/21 10:9 p.m.5 views

aimodelshare (>=0.0.157 <=0.1.0), aliby (>=0.1.18 <=0.1.55) +69 more potentially affected by CVE-2022-41908 via tensorflow (>=2.9.0 <=2.9.2)

tensorflow PYPI version =2.9.0, =0.0.157, =0.1.18, =0.1.11, =0.30.0, =0.2.6, =0.0.1, =1.0.0, =0.0.0, =4.8.2, =0.9.0, =0.99.1 - cvt-tensorflow =1.1.4 and more Source cves: CVE-2022-41908 Source advisory: OSV:GHSA-MV77-9G28-CWG3...

7.5CVSS7.1AI score0.0045EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/11/21 10:9 p.m.5 views

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4935 more potentially affected by CVE-2022-41908 via tensorflow (>=1.0.1 <=2.8.3)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.5.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-41908 Source advisory: OSV:GHSA-MV77-9G28-CWG3...

7.5CVSS7.1AI score0.0045EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2022/11/18 12:0 a.m.6 views

CVE-2022-41908 `CHECK` fail via inputs in `PyFunc` in Tensorflow

TensorFlow is an open source platform for machine learning. An input token that is not a UTF-8 bytestring will trigger a CHECK fail in tf.rawops.PyFunc. We have patched the issue in GitHub commit 9f03a9d3bafe902c1e6beb105b2f24172f238645. The fix will be included in TensorFlow 2.11. We will also...

4.8CVSS7.1AI score0.0045EPSS
Exploits1References3
CVE
CVE
added 2022/11/18 12:0 a.m.93 views

CVE-2022-41908

TensorFlow CVE-2022-41908: CHECK fail in tf.raw_ops.PyFunc triggered by non-UTF-8 input tokens. Patch committed (9f03a9d3bafe902c1e6beb105b2f24172f238645); fix slated for TensorFlow 2.11 with cherry-picks to 2.10.1, 2.9.3, and 2.8.4. No exploit details provided in the documents.

7.5CVSS6.2AI score0.0045EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2022/11/18 12:0 a.m.34 views

CVE-2022-41908 `CHECK` fail via inputs in `PyFunc` in Tensorflow

TensorFlow is an open source platform for machine learning. An input token that is not a UTF-8 bytestring will trigger a CHECK fail in tf.rawops.PyFunc. We have patched the issue in GitHub commit 9f03a9d3bafe902c1e6beb105b2f24172f238645. The fix will be included in TensorFlow 2.11. We will also...

4.8CVSS7.7AI score0.0045EPSS
Exploits1References3
Rows per page
Query Builder