Lucene search
K

344 matches found

vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.5 views

d3m-simon (=1.2.5), deep-floorplan (=0.0.0) +2 more potentially affected by CVE-2021-29585 via tensorflow-gpu (>=2.2.0 <=2.3.0)

tensorflow-gpu PYPI version =2.2.0, =1.3.0, =2.2.0, =2.2.0rc2 Source cves: CVE-2021-29585 Source advisory: OSV:PYSEC-2021-711...

7.8CVSS7AI score0.00201EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.7 views

d3m-simon (=1.2.5), deep-floorplan (=0.0.0) +2 more potentially affected by CVE-2021-29571 via tensorflow-gpu (>=2.2.0 <=2.3.0)

tensorflow-gpu PYPI version =2.2.0, =1.3.0, =2.2.0, =2.2.0rc2 Source cves: CVE-2021-29571 Source advisory: OSV:PYSEC-2021-697...

7.8CVSS7AI score0.0024EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.6 views

d3m-simon (=1.2.5), deep-floorplan (=0.0.0) +2 more potentially affected by CVE-2021-29568 via tensorflow-gpu (>=2.2.0 <=2.3.0)

tensorflow-gpu PYPI version =2.2.0, =1.3.0, =2.2.0, =2.2.0rc2 Source cves: CVE-2021-29568 Source advisory: OSV:PYSEC-2021-694...

7.8CVSS7AI score0.00197EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.1 views

d3m-simon (=1.2.5), deep-floorplan (=0.0.0) +2 more potentially affected by CVE-2021-29563 via tensorflow-gpu (>=2.2.0 <=2.3.0)

tensorflow-gpu PYPI version =2.2.0, =1.3.0, =2.2.0, =2.2.0rc2 Source cves: CVE-2021-29563 Source advisory: OSV:PYSEC-2021-689...

5.5CVSS6AI score0.00189EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.5 views

d3m-simon (=1.2.5), deep-floorplan (=0.0.0) +2 more potentially affected by CVE-2021-29551 via tensorflow-gpu (>=2.2.0 <=2.3.0)

tensorflow-gpu PYPI version =2.2.0, =1.3.0, =2.2.0, =2.2.0rc2 Source cves: CVE-2021-29551 Source advisory: OSV:PYSEC-2021-677...

5.5CVSS6AI score0.00217EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.6 views

d3m-simon (=1.2.5), deep-floorplan (=0.0.0) +2 more potentially affected by CVE-2021-29549 via tensorflow-gpu (>=2.2.0 <=2.3.0)

tensorflow-gpu PYPI version =2.2.0, =1.3.0, =2.2.0, =2.2.0rc2 Source cves: CVE-2021-29549 Source advisory: OSV:PYSEC-2021-675...

5.5CVSS6AI score0.00189EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.6 views

d3m-simon (=1.2.5), deep-floorplan (=0.0.0) +2 more potentially affected by CVE-2021-29543 via tensorflow-gpu (>=2.2.0 <=2.3.0)

tensorflow-gpu PYPI version =2.2.0, =1.3.0, =2.2.0, =2.2.0rc2 Source cves: CVE-2021-29543 Source advisory: OSV:PYSEC-2021-669...

5.5CVSS6AI score0.00189EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.6 views

d3m-simon (=1.2.5), deep-floorplan (=0.0.0) +2 more potentially affected by CVE-2021-29535 via tensorflow-gpu (>=2.2.0 <=2.3.0)

tensorflow-gpu PYPI version =2.2.0, =1.3.0, =2.2.0, =2.2.0rc2 Source cves: CVE-2021-29535 Source advisory: OSV:PYSEC-2021-661...

7.8CVSS7AI score0.00211EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.9 views

d3m-simon (=1.2.5), deep-floorplan (=0.0.0) +2 more potentially affected by CVE-2021-29533 via tensorflow-gpu (>=2.2.0 <=2.3.0)

tensorflow-gpu PYPI version =2.2.0, =1.3.0, =2.2.0, =2.2.0rc2 Source cves: CVE-2021-29533 Source advisory: OSV:PYSEC-2021-659...

5.5CVSS6AI score0.00217EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.3 views

d3m-simon (=1.2.5), deep-floorplan (=0.0.0) +2 more potentially affected by CVE-2021-29532 via tensorflow-gpu (>=2.2.0 <=2.3.0)

tensorflow-gpu PYPI version =2.2.0, =1.3.0, =2.2.0, =2.2.0rc2 Source cves: CVE-2021-29532 Source advisory: OSV:PYSEC-2021-658...

7.1CVSS7AI score0.00198EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/03/11 3:9 a.m.8 views

ai.konduit.serving:konduit-serving-clients (>=0.0.2 <=0.3.0), ai.konduit.serving:konduit-serving-distro-bom (>=0.0.2 <=0.3.0) +195 more potentially affected by CVE-2021-21364 via io.swagger:swagger-codegen (>=2.1.1 <=2.4.18)

io.swagger:swagger-codegen MAVEN version =2.1.1, =0.0.2, =0.0.2, =0.1-1, =1.1, =0.1.13, =1.0.1, =1.1, =1.3, =0.12, =1.1.6, =1.1.7 and more Source cves: CVE-2021-21364 Source advisory: OSV:GHSA-HPV8-9RQ5-HQ7W...

5.5CVSS6.3AI score0.00282EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/03/11 3:9 a.m.6 views

ai.konduit.serving:konduit-serving-clients (>=0.0.2 <=0.3.0), ai.konduit.serving:konduit-serving-distro-bom (>=0.0.2 <=0.3.0) +195 more potentially affected by CVE-2021-21363 via io.swagger:swagger-codegen (>=2.1.1 <=2.4.18)

io.swagger:swagger-codegen MAVEN version =2.1.1, =0.0.2, =0.0.2, =0.1-1, =1.1, =0.1.13, =1.0.1, =1.1, =1.3, =0.12, =1.1.6, =1.1.7 and more Source cves: CVE-2021-21363 Source advisory: OSV:GHSA-PC22-3G76-GM6J...

7CVSS6.7AI score0.00414EPSS
Exploits1
CNVD
CNVD
added 2020/09/28 12:0 a.m.2 views

Google TensorFlow Input Validation Error Vulnerability (CNVD-2020-55182)

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. An input validation error vulnerability exists in Tensorflow versions prior to 1.15.4, 2.0.3, 2.1.2, 2.2.1, 2.3.1, and 2.3.1, which stems from the program's failure to adequately perform path...

9CVSS6.8AI score0.00944EPSS
Exploits1References1
PyPA
PyPA
added 2020/09/25 7:15 p.m.4 views

PYSEC-2020-274

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the SparseFillEmptyRowsGrad implementation has incomplete validation of the shapes of its arguments. Although reverseindexmapt and gradvaluest are accessed in a similar pattern, only reverseindexmapt is validated to be of proper...

5.3CVSS6.8AI score0.01017EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2020/09/25 7:15 p.m.4 views

PYSEC-2020-321

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, changing the TensorFlow's SavedModel protocol buffer and altering the name of required keys results in segfaults and data corruption while loading the model. This can cause a denial of service in products using tensorflow-servin...

9CVSS7.2AI score0.00944EPSS
Exploits1References4
PyPA
PyPA
added 2020/09/25 7:15 p.m.9 views

PYSEC-2020-129

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, changing the TensorFlow's SavedModel protocol buffer and altering the name of required keys results in segfaults and data corruption while loading the model. This can cause a denial of service in products using tensorflow-servin...

9CVSS7AI score0.00944EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2020/09/25 12:0 a.m.7 views

PT-2020-14277 · Google +1 · Tensorflow +1

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 1.15.4 TensorFlow versions prior to 2.0.3 TensorFlow versions prior to 2.1.2 TensorFlow versions prior to 2.2.1 TensorFlow versions prior to 2.3.1 Description: Changing the TensorFlow's SavedModel protocol buffer...

9.8CVSS6.1AI score0.01235EPSS
Exploits16References71
Hacker One
Hacker One
added 2020/08/02 5:13 a.m.202 views

Ruby on Rails: XSS by file (Active Storage `Proxying`)

Hello, I've seen similar issues with 407319 and 429868 occur with Active Storage's new File serving strategies Proxying. Commit is https://github.com/rails/rails/commit/dfb5a82b259e134eac89784ac4ace0c44d1b4aee. ruby...

0.1AI score
Exploits0
Snyk
Snyk
added 2020/06/20 12:38 p.m.5 views

Directory Traversal

Overview rollup-plugin-serve-favicon is a rollup plugin to serve bundles. Affected versions of this package are vulnerable to Directory Traversal. There is no path sanitization in readFile operation. PoC by JHU System Security Lab Step 1: start a server var server = require"rollup-plugin-serve";...

9.8CVSS7.5AI score0.01474EPSS
Exploits0References2
Snyk
Snyk
added 2020/06/20 12:38 p.m.5 views

Directory Traversal

Overview rollup-plugin-server is a rollup plugin to serve the bundle. Affected versions of this package are vulnerable to Directory Traversal. There is no path sanitization in readFile operation performed inside the readFileFromContentBase function. PoC by JHU System Security Lab 1. Create a serv...

7.5CVSS7.5AI score0.01768EPSS
Exploits1References2
Rows per page
Query Builder