Lucene search
+L

9 matches found

osv
osv
added 2026/07/07 10:17 a.m.4 views

PYSEC-2026-977 TensorFlow vulnerable to `CHECK` fail in `FakeQuantWithMinMaxVars`

Impact If FakeQuantWithMinMaxVars is given min or max tensors of a nonzero rank, it results in a CHECK fail that can be used to trigger a denial of service attack. python import tensorflow as tf numbits = 8 narrowrange = False inputs = tf.constant0, shape=2,3, dtype=tf.float32 min = tf.constant0,...

5.9CVSS6.9AI score0.00383EPSS
Exploits0References7
cnvd
cnvd
added 2022/09/20 12:0 a.m.29 views

Google TensorFlow Denial of Service Vulnerability (CNVD-2023-10608)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A denial-of-service vulnerability exists in Google TensorFlow, which stems from the fact that FakeQuantWithMinMaxVars will fail to assert if it is given a tensor of non-zero rank min or max. An attacker...

7.5CVSS4.7AI score0.00383EPSS
Exploits0References1
github
github
added 2022/09/16 10:20 p.m.32 views

TensorFlow vulnerable to `CHECK` fail in `FakeQuantWithMinMaxVars`

Impact If FakeQuantWithMinMaxVars is given min or max tensors of a nonzero rank, it results in a CHECK fail that can be used to trigger a denial of service attack. python import tensorflow as tf numbits = 8 narrowrange = False inputs = tf.constant0, shape=2,3, dtype=tf.float32 min = tf.constant0,...

7.5CVSS7.5AI score0.00383EPSS
Exploits0References5Affected Software3
cvelist
cvelist
added 2022/09/16 8:50 p.m.39 views

CVE-2022-35971 `CHECK` fail in `FakeQuantWithMinMaxVars` in TensorFlow

TensorFlow is an open source platform for machine learning. If FakeQuantWithMinMaxVars is given min or max tensors of a nonzero rank, it results in a CHECK fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

5.9CVSS7.7AI score0.00383EPSS
Exploits0References2
osv
osv
added 2022/09/16 8:50 p.m.25 views

CVE-2022-35971 `CHECK` fail in `FakeQuantWithMinMaxVars` in TensorFlow

TensorFlow is an open source platform for machine learning. If FakeQuantWithMinMaxVars is given min or max tensors of a nonzero rank, it results in a CHECK fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

5.9CVSS7.6AI score0.00383EPSS
Exploits0References4
debiancve
debiancve
added 2022/09/16 8:50 p.m.5 views

CVE-2022-35971

TensorFlow is an open source platform for machine learning. If FakeQuantWithMinMaxVars is given min or max tensors of a nonzero rank, it results in a CHECK fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

7.5CVSS6.8AI score0.00383EPSS
Exploits0
cve
cve
added 2022/09/16 8:50 p.m.92 views

CVE-2022-35971

CVE-2022-35971 affects TensorFlow: a denial-of-service risk when FakeQuantWithMinMaxVars receives min/max tensors of nonzero rank, causing a CHECK failure. Root cause: input validation in FakeQuantWithMinMaxVars leads to DoS. Known impact: remote attacker could trigger DoS via this path; exploita...

7.5CVSS6.4AI score0.00383EPSS
Exploits0References2Affected Software1
cnnvd
cnnvd
added 2022/09/16 12:0 a.m.7 views

Google TensorFlow 安全漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A denial-of-service vulnerability exists in Google TensorFlow, which stems from the fact that FakeQuantWithMinMaxVars will fail to assert if it is given a tensor of non-zero rank min or max. An attacker...

7.5CVSS6.6AI score0.00383EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2022/09/16 12:0 a.m.3 views

PT-2022-23070

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.10.0 TensorFlow versions 2.9.1, 2.8.1, and 2.7.2 Description The issue arises when FakeQuantWithMinMaxVars is given min or max tensors of a nonzero rank, resulting in a CHECK fail that can be used to trigger a...

7.5CVSS7.1AI score0.00383EPSS
Exploits0References17
Rows per page
Query Builder