CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/03 8:7 p.m.•1 views

Exploits0References7

EUVD-2022-38793

Malicious code in bioql PyPI...

RedhatCVE•added 2025/05/22 8:53 p.m.•0 views

CVE-2021-37687

TensorFlow is an end-to-end open source platform for machine learning. In affected versions TFLite's GatherNd implementation does not support negative indices but there are no checks for this situation. Hence, an attacker can read arbitrary data from the heap by carefully crafting a model with...

5.5CVSS6AI score0.00044EPSS

Exploits0References1

Veracode•added 2024/09/06 8:11 a.m.•3 views

Division By Zero Error

TensorFlow is vulnerable to Division By Zero Error. The vulnerability is due to improper validation of the params input in the GatherNd TFLite operator, which allows an empty tensor to craft a malicious model that can trigger a division by zero and causing a zero dimension in paramsshape.Dims...

7.8CVSS6.5AI score0.00011EPSS

Exploits1References4Affected Software3

OSV•added 2024/03/06 11:14 a.m.•20 views

BIT-TENSORFLOW-2022-35937 OOB read in `Gather_nd` op in TensorFlow Lite

9.1CVSS7.9AI score0.00126EPSS

OSV•added 2024/03/06 11:14 a.m.•16 views

BIT-TENSORFLOW-2022-35938 OOB read in `Gather_nd` op in TensorFlow Lite Micro

9.1CVSS7.9AI score0.00126EPSS

SUSE CVE•added 2023/02/15 3:43 a.m.•3 views

SUSE CVE-2021-29589

TensorFlow is an end-to-end open source platform for machine learning. The reference implementation of the GatherNd TFLite operator is vulnerable to a division by zero...

7.8CVSS7.4AI score0.00011EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 3:39 a.m.•1 views

SUSE CVE-2021-37687

5.5CVSS5AI score0.00044EPSS

SUSE CVE•added 2023/02/15 3:24 a.m.•1 views

SUSE CVE-2022-35938

SUSE CVE•added 2023/02/15 3:24 a.m.•1 views

SUSE CVE-2022-35937

OSV•added 2022/09/16 9:4 p.m.•0 views

GHSA-PXRW-J2FV-HX3H TensorFlow vulnerable to OOB read in `Gather_nd` in TF Lite

Impact The GatherNd function takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read is triggered. Patches We have patched the issue in GitHub commit...

7CVSS5.8AI score0.00126EPSS

Exploits0References6

NVD•added 2022/09/16 8:15 p.m.•22 views

CVE-2022-35938

9.1CVSS0.00126EPSS

NVD•added 2022/09/16 8:15 p.m.•11 views

CVE-2022-35937

9.1CVSS0.00126EPSS

Prion•added 2022/09/16 8:15 p.m.•11 views

Out-of-bounds

6.4CVSS9.1AI score0.00126EPSS

Exploits0References3Affected Software1

Prion•added 2022/09/16 8:15 p.m.•11 views

Out-of-bounds

6.4CVSS9.2AI score0.00126EPSS

Exploits0References3Affected Software1

OSV•added 2022/09/16 7:40 p.m.•21 views

CVE-2022-35937 OOB read in `Gather_nd` op in TensorFlow Lite

7CVSS9AI score0.00126EPSS

Exploits0References5

Debian CVE•added 2022/09/16 7:40 p.m.•2 views

CVE-2022-35937

9.1CVSS6.8AI score0.00126EPSS

Exploits0

CVE•added 2022/09/16 7:40 p.m.•76 views

CVE-2022-35937

TensorFlow Lite GatherNd contains an out-of-bounds read when input indices can exceed output sizes. The issue is fixed via patch 595a65a3e224a0362d7e68c2213acfc2b499a196, with the fix planned for TensorFlow 2.10.0 and cherry-picks for 2.9.1, 2.8.1, and 2.7.2 (all in the supported range). There ar...

9.1CVSS8.1AI score0.00126EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2022/09/16 7:40 p.m.•4 views

CVE-2022-35937 OOB read in `Gather_nd` op in TensorFlow Lite

7CVSS9.2AI score0.00126EPSS