CVE-2024-36734

Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service DoS via inputting a negative value into the dim parameter...

CVE-2024-36737

Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service DoS via inputting a negative value into the oneflow.full parameter...

CVE-2024-36735

OneFlow-Inc. Oneflow v0.9.1 does not display an error or warning when the oneflow.eye parameter is floating...

PT-2024-27145 · Oneflow · Oneflow

Name of the Vulnerable Software and Affected Versions: Oneflow version 0.9.1 Description: The issue is related to improper input validation, allowing attackers to cause a Denial of Service DoS by inputting a negative value into the oneflow.full parameter. Recommendations: For version 0.9.1, avoid...

PT-2024-27141 · Oneflow · Oneflow

Name of the Vulnerable Software and Affected Versions: Oneflow version 0.9.1 Description: The issue allows attackers to cause a Denial of Service DoS when an empty array is processed with oneflow.tensordot. Recommendations: For version 0.9.1, consider avoiding the use of oneflow.tensordot with...

PT-2024-27147 · Oneflow · Oneflow

Name of the Vulnerable Software and Affected Versions: Oneflow version 0.9.1 Description: The issue allows attackers to cause a Denial of Service DoS when an index as a negative number exceeds the range of size. Recommendations: For version 0.9.1, consider restricting the input of negative index...

PT-2024-27148 · Oneflow · Oneflow

Name of the Vulnerable Software and Affected Versions: OneFlow version 0.9.1 Description: An issue in the oneflow.scatter nd parameter allows attackers to cause a Denial of Service DoS when the index parameter exceeds the range of shape. Recommendations: For version 0.9.1, consider restricting th...