Lucene search
+L

13 matches found

OSV
OSV
added 2026/07/07 10:17 a.m.4 views

PYSEC-2026-1037 TensorFlow vulnerable to segfault in `QuantizedAdd`

Impact If QuantizedAdd is given mininput or maxinput tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. python import tensorflow as tf Toutput = tf.qint32 x = tf.constant140, shape=1, dtype=tf.quint8 y = tf.constant26, shape=10,...

5.9CVSS5.9AI score0.00409EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.4 views

SUSE CVE-2022-35967

TensorFlow is an open source platform for machine learning. If QuantizedAdd is given mininput or maxinput tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 49b3824d83af706df0ad07e4e677d88659756d89...

7.5CVSS7.7AI score0.00409EPSS
Exploits0References3
CNVD
CNVD
added 2022/09/20 12:0 a.m.28 views

Google TensorFlow Input Validation Error Vulnerability (CNVD-2023-10611)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. An input validation error vulnerability exists in Google TensorFlow, which stems from a segmentation error that occurs if QuantizedAdd is given a tensor of non-zero rank mininput or maxinput. An attacke...

7.5CVSS4.6AI score0.00409EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/09/16 10:16 p.m.47 views

TensorFlow vulnerable to segfault in `QuantizedAdd`

Impact If QuantizedAdd is given mininput or maxinput tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. python import tensorflow as tf Toutput = tf.qint32 x = tf.constant140, shape=1, dtype=tf.quint8 y = tf.constant26, shape=10,...

7.5CVSS7.5AI score0.00409EPSS
Exploits0References5Affected Software3
NVD
NVD
added 2022/09/16 9:15 p.m.44 views

CVE-2022-35967

TensorFlow is an open source platform for machine learning. If QuantizedAdd is given mininput or maxinput tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 49b3824d83af706df0ad07e4e677d88659756d89...

7.5CVSS0.00409EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/09/16 8:35 p.m.49 views

CVE-2022-35967 Segfault in `QuantizedAdd` in TensorFlow

TensorFlow is an open source platform for machine learning. If QuantizedAdd is given mininput or maxinput tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 49b3824d83af706df0ad07e4e677d88659756d89...

5.9CVSS7.7AI score0.00409EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/09/16 8:35 p.m.6 views

CVE-2022-35967 Segfault in `QuantizedAdd` in TensorFlow

TensorFlow is an open source platform for machine learning. If QuantizedAdd is given mininput or maxinput tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 49b3824d83af706df0ad07e4e677d88659756d89...

5.9CVSS7.5AI score0.00409EPSS
Exploits0References2
CVE
CVE
added 2022/09/16 8:35 p.m.76 views

CVE-2022-35967

CVE-2022-35967 affects TensorFlow: a segfault in QuantizedAdd when min_input or max_input tensors have nonzero rank can trigger a denial of service. The issue has been patched in GitHub commit 49b3824d83af706df0ad07e4e677d88659756d89, with the fix planned for TensorFlow 2.10.0 and cherry-picked t...

7.5CVSS6.4AI score0.00409EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/09/16 8:35 p.m.25 views

CVE-2022-35967 Segfault in `QuantizedAdd` in TensorFlow

TensorFlow is an open source platform for machine learning. If QuantizedAdd is given mininput or maxinput tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 49b3824d83af706df0ad07e4e677d88659756d89...

5.9CVSS7.6AI score0.00409EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/09/16 12:0 a.m.55 views

Google TensorFlow 输入验证错误漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. An input validation error vulnerability exists in Google TensorFlow, which stems from a segmentation error that occurs if QuantizedAdd is given a tensor of non-zero rank mininput or maxinput. An attacke...

7.5CVSS6.6AI score0.00409EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/09/16 12:0 a.m.4 views

PT-2022-23066

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.10.0 TensorFlow versions 2.9.1 and earlier TensorFlow versions 2.8.1 and earlier TensorFlow versions 2.7.2 and earlier Description The issue arises when QuantizedAdd is given min input or max input tensors of a...

7.5CVSS7.1AI score0.00409EPSS
Exploits0References17
Github Security Blog
Github Security Blog
added 2021/05/21 2:23 p.m.31 views

Division by 0 in `QuantizedAdd`

Impact An attacker can cause a runtime division by zero error and denial of service in tf.rawops.QuantizedAdd: python import tensorflow as tf x = tf.constant68, 228, shape=2, 1, dtype=tf.quint8 y = tf.constant, shape=2, 0, dtype=tf.quint8 minx = tf.constant10.723421015884028 maxx =...

5.5CVSS1.5AI score0.00189EPSS
Exploits1References7Affected Software3
Cvelist
Cvelist
added 2021/05/14 7:10 p.m.32 views

CVE-2021-29549 Division by 0 in `QuantizedAdd`

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a runtime division by zero error and denial of service in tf.rawops.QuantizedBatchNormWithGlobalNormalization. This is because the...

2.5CVSS5.7AI score0.00189EPSS
Exploits1References2
Rows per page
Query Builder