CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

121 matches found

NVD•added 2022/01/26 2:15 p.m.•20 views

CVE-2021-22570

Nullptr dereference when a null char is present in a proto symbol. The symbol is parsed incorrectly, leading to an unchecked call into the proto file's name during generation of the resulting error message. Since the symbol is incorrectly parsed, the file is nullptr. We recommend upgrading to...

6.5CVSS0.00138EPSS

Exploits0References11

OSV•added 2022/01/26 2:15 p.m.•76 views

PYSEC-2022-48

6.5CVSS3.2AI score0.00138EPSS

Exploits0References4

UbuntuCve•added 2022/01/26 2:15 p.m.•46 views

CVE-2021-22570

6.5CVSS6.7AI score0.00138EPSS

Exploits0References4

Prion•added 2022/01/26 2:15 p.m.•26 views

Design/Logic Flaw

2.1CVSS5.5AI score0.00138EPSS

Exploits0References11Affected Software4

AlpineLinux•added 2022/01/26 2:15 p.m.•66 views

CVE-2021-22570

6.5CVSS3.2AI score0.00138EPSS

Exploits0

CVE•added 2022/01/26 12:0 a.m.•660 views

CVE-2021-22570

CVE-2021-22570 affects Protocol Buffers (protobuf). A null character in a proto symbol is parsed incorrectly, causing a null pointer dereference via an unchecked access to the proto file name during error message generation. The issue can enable denial of service or memory access instability as d...

6.5CVSS6.5AI score0.00138EPSS

Exploits0References11Affected Software1

CNVD•added 2021/11/24 12:0 a.m.•18 views

Google TensorFlow Buffer Overflow Vulnerability (CNVD-2022-09870)

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. A buffer overflow vulnerability exists in Google TensorFlow, which stems from undefined behavior of the shape inference code of "tf.ragged.cross" due to a bound reference to "nullptr" in the...

7.8CVSS7.5AI score0.00018EPSS

Exploits1References1

OSV•added 2021/11/05 9:15 p.m.•14 views

CVE-2021-41219

TensorFlow is an open source platform for machine learning. In affected versions the code for sparse matrix multiplication is vulnerable to undefined behavior via binding a reference to nullptr. This occurs whenever the dimensions of a or b are 0 or less. In the case on one of these is 0, an empt...

7.8CVSS6.7AI score

Exploits0References2

NVD•added 2021/11/05 9:15 p.m.•12 views

CVE-2021-41214

TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for tf.ragged.cross has an undefined behavior due to binding a reference to nullptr. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1,...

7.8CVSS0.00018EPSS

Exploits1References2

PyPA•added 2021/11/05 9:15 p.m.•5 views

PYSEC-2021-821

7.8CVSS7.2AI score0.00018EPSS

Exploits1References2Affected Software1

Prion•added 2021/11/05 9:15 p.m.•11 views

Heap overflow

4.6CVSS7.5AI score0.00019EPSS

Exploits1References2Affected Software1

PyPA•added 2021/11/05 9:15 p.m.•3 views

PYSEC-2021-406

7.8CVSS7.2AI score0.00018EPSS

Exploits1References2Affected Software1

Cvelist•added 2021/11/05 8:50 p.m.•27 views

CVE-2021-41219 Undefined behavior via `nullptr` reference binding in sparse matrix multiplication

7.8CVSS7.8AI score0.00019EPSS

Exploits1References2

Cvelist•added 2021/11/05 8:50 p.m.•13 views

CVE-2021-41214 Reference binding to `nullptr` in `tf.ragged.cross`

7.8CVSS7.8AI score0.00018EPSS

Exploits1References2

Github Security Blog•added 2021/08/25 2:42 p.m.•30 views

Reference binding to nullptr and heap OOB in binary cwise ops

Impact An attacker can cause undefined behavior via binding a reference to null pointer in all binary cwise operations that don't require broadcasting e.g., gradients of binary cwise operations: python import tensorflow as tf tf.rawops.SqrtGrady=4, 16,dy= The implementation assumes that the two...

7.8CVSS7.5AI score0.00039EPSS

Exploits0References7Affected Software3

Github Security Blog•added 2021/08/25 2:41 p.m.•31 views

Reference binding to nullptr in shape inference

Impact An attacker can cause undefined behavior via binding a reference to null pointer in tf.rawops.SparseFillEmptyRows: python import tensorflow as tf tf.compat.v1.disablev2behavior tf.rawops.SparseFillEmptyRows indices = tf.constant, shape=0, 0, dtype=tf.int64, values = tf.constant, shape=0,...

7.8CVSS7.5AI score0.00013EPSS

Exploits0References7Affected Software3

PyPA•added 2021/08/12 9:15 p.m.•6 views

PYSEC-2021-575

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can generate undefined behavior via a reference binding to nullptr in BoostedTreesCalculateBestGainsPerFeature and similar attack can occur in BoostedTreesCalculateBestFeatureSplitV2. The...

7.8CVSS6.9AI score0.00106EPSS

Exploits0References3Affected Software1

Prion•added 2021/08/12 9:15 p.m.•7 views

Input validation

4.6CVSS7.5AI score0.00106EPSS

Exploits0References3Affected Software1

PyPA•added 2020/09/25 7:15 p.m.•5 views

PYSEC-2020-305

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the tf.rawops.Switch operation takes as input a tensor and a boolean and outputs two tensors. Depending on the boolean value, one of the tensors is exactly the input tensor whereas the other one should be an empty tensor. Howeve...

5.3CVSS6.8AI score0.00189EPSS

Exploits1References4Affected Software1

Tenable Nessus•added 2019/04/15 12:0 a.m.•20 views

Fedora 29 : php (2019-da36d5d484)

PHP version 7.2.17 04 Apr 2019 Core: - Fixed bug php77738 Nullptr deref in zendcompileexpr. Laruence - Fixed bug php77660 Segmentation fault on break 2147483648. Laruence - Fixed bug php77652 Anonymous classes can lose their interface information. Nikita - Fixed bug php77676 Unable to run tests...

5.5AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by