Lucene search
K

27 matches found

OSV
OSV
added 2021/05/14 8:15 p.m.21 views

PYSEC-2021-463

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a heap buffer overflow in QuantizedMul by passing in invalid thresholds for the quantization. This is because the...

7.8CVSS1.5AI score0.00211EPSS
Exploits1References2
CVE
CVE
added 2021/05/14 7:11 p.m.101 views

CVE-2021-29535

CVE-2021-29535 affects TensorFlow’s QuantizedMul implementation. The vulnerability arises when four quantization thresholds are passed as inputs and may be empty tensors, causing a heap buffer overflow by accessing .flat()(0) on an empty buffer. This is rooted in the code path in quantized_mul_op...

7.8CVSS5.8AI score0.00211EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/05/14 7:11 p.m.36 views

CVE-2021-29535 Heap buffer overflow in `QuantizedMul`

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a heap buffer overflow in QuantizedMul by passing in invalid thresholds for the quantization. This is because the...

2.5CVSS8.1AI score0.00211EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2021/05/14 7:11 p.m.5 views

CVE-2021-29535

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a heap buffer overflow in QuantizedMul by passing in invalid thresholds for the quantization. This is because the...

7.8CVSS7.4AI score0.00211EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2021/05/14 12:0 a.m.7 views

PT-2021-18286 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.5.0 TensorFlow version 2.4.2 TensorFlow version 2.3.3 TensorFlow version 2.2.3 TensorFlow version 2.1.4 Description: An attacker can cause a heap buffer overflow in QuantizedMul by passing in invalid thresholds...

7.8CVSS7.8AI score0.00211EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2021/05/14 12:0 a.m.3 views

PT-2021-18279 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.5.0 TensorFlow versions 2.4.2 and earlier TensorFlow versions 2.3.3 and earlier TensorFlow versions 2.2.3 and earlier TensorFlow versions 2.1.4 and earlier Description: An attacker can trigger a division by 0 in...

5.5CVSS5.2AI score0.00189EPSS
Exploits1References13
CNNVD
CNNVD
added 2021/05/14 12:0 a.m.11 views

Google TensorFlow 缓冲区错误漏洞

Google TensorFlow is an end-to-end open source machine learning platform. A heap buffer overflow vulnerability exists in the QuantizedMul implementation in TensorFlow versions prior to 2.5.0. An attacker can exploit this vulnerability by passing an invalid quantization threshold that results in a...

7.8CVSS6.2AI score0.00211EPSS
Exploits1References3
Rows per page
Query Builder