8 matches found
EUVD-2025-50829
Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion...
CVE-2025-63397
Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion...
CVE-2025-63397
Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion...
Improper Input Validation
Overview Affected versions of this package are vulnerable to Improper Input Validation via the flow.eyen function. An attacker can trigger a segmentation fault by adding a Python sequence to the native code. PoC python import oneflow as flow diag = 1.0, 2.0, 3.0 tensor = flow.eye3 + diag...
CVE-2025-63397
Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion...
PT-2025-46198
Name of the Vulnerable Software and Affected Versions OneFlow version 0.9.0 Description A flaw exists in input validation within OneFlow version 0.9.0. This issue allows attackers to trigger a segmentation fault by adding a Python sequence to native code during broadcasting or type conversion. Th...
CVE-2025-63397
OneFlow v0.9.0 is affected by an improper input validation vulnerability that can cause a segmentation fault when a Python sequence is added to native code during broadcasting/type conversion. Root cause is insufficient checks on user-supplied input. Reported across multiple sources (nvd, Red Hat...
CVE-2025-63397
Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion...