Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

797 matches found

NVD
NVDadded 2021/11/05 8:15 p.m.14 views

CVE-2021-41210

TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for SparseCountSparseOutput can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow...

7.1CVSS0.00019EPSS
Exploits0References2
PyPA
PyPAadded 2021/11/05 8:15 p.m.3 views

PYSEC-2021-402

TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for SparseCountSparseOutput can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow...

7.1CVSS6.9AI score0.00019EPSS
Exploits0References2Affected Software1
PyPA
PyPAadded 2021/11/05 8:15 p.m.5 views

PYSEC-2021-846

TensorFlow is an open source platform for machine learning. In affected versions the implementation of tf.math.segment operations results in a CHECK-fail related abort and denial of service if a segment id in segmentids is large. This is similar to CVE-2021-29584 and similar other reported...

5.5CVSS7.1AI score0.00038EPSS
Exploits2References4Affected Software1
OSV
OSVadded 2021/11/05 8:15 p.m.2 views

PYSEC-2021-402

TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for SparseCountSparseOutput can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow...

7.1CVSS7AI score0.00019EPSS
Exploits0References2
OSV
OSVadded 2021/11/05 8:15 p.m.17 views

PYSEC-2021-619

TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for SparseCountSparseOutput can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow...

7.1CVSS2AI score0.00019EPSS
Exploits0References2
Prion
Prionadded 2021/11/05 8:15 p.m.15 views

Out-of-bounds

TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for SparseCountSparseOutput can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow...

3.6CVSS6.8AI score0.00019EPSS
Exploits0References2Affected Software1
PyPA
PyPAadded 2021/11/05 8:15 p.m.4 views

PYSEC-2021-619

TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for SparseCountSparseOutput can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow...

7.1CVSS6.9AI score0.00019EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2021/11/05 8:10 p.m.13 views

CVE-2021-41205 Heap OOB read in all `tf.raw_ops.QuantizeAndDequantizeV*` ops

TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for the QuantizeAndDequantizeV operations can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit ...

7.1CVSS7.1AI score0.00019EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2021/11/05 8:10 p.m.1 views

CVE-2021-41205

TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for the QuantizeAndDequantizeV operations can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit ...

7.1CVSS7AI score0.00019EPSS
Exploits0
Debian CVE
Debian CVEadded 2021/11/05 8:10 p.m.1 views

CVE-2021-41210

TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for SparseCountSparseOutput can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow...

7.1CVSS7AI score0.00019EPSS
Exploits0
Debian CVE
Debian CVEadded 2021/11/05 7:50 p.m.2 views

CVE-2021-41195

TensorFlow is an open source platform for machine learning. In affected versions the implementation of tf.math.segment operations results in a CHECK-fail related abort and denial of service if a segment id in segmentids is large. This is similar to CVE-2021-29584 and similar other reported...

5.5CVSS7.2AI score0.00038EPSS
Exploits1
Positive Technologies
Positive Technologiesadded 2021/11/05 12:0 a.m.2 views

PT-2021-23191 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.7.0 TensorFlow versions 2.6.1 and earlier TensorFlow versions 2.5.2 and earlier TensorFlow versions 2.4.4 and earlier Description: TensorFlow is an open source platform for machine learning. In affected versions...

5.5CVSS5.5AI score0.00017EPSS
Exploits0References16
CNNVD
CNNVDadded 2021/11/05 12:0 a.m.4 views

Google TensorFlow 安全漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google, Inc. in the United States. A security vulnerability exists in Google TensorFlow versions prior to 2.7.0, which stems from a lack of validation of the shape of the tensor parameter involved in a call...

7.8CVSS7.3AI score0.0001EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2021/11/05 12:0 a.m.1 views

PT-2021-23177 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.7.0 TensorFlow versions 2.6.1 and earlier TensorFlow versions 2.5.2 and earlier TensorFlow versions 2.4.4 and earlier Description: The shape inference functions for the QuantizeAndDequantizeV operations can...

7.1CVSS6.7AI score0.00019EPSS
Exploits0References13
CNNVD
CNNVDadded 2021/11/05 12:0 a.m.1 views

Google TensorFlow 缓冲区错误漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google, Inc. in the United States. Google TensorFlow suffers from a buffer error vulnerability that stems from the fact that in the affected version, QuantizeV2's shape inference code could trigger a read...

7.1CVSS7.4AI score0.00019EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2021/11/05 12:0 a.m.2 views

PT-2021-23194 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.7.0 TensorFlow versions 2.6.1 and earlier TensorFlow versions 2.5.2 and earlier TensorFlow versions 2.4.4 and earlier Description: The shape inference code for the Cudnn operations in TensorFlow can be tricked...

7.8CVSS7.6AI score0.0002EPSS
Exploits1References15
CNNVD
CNNVDadded 2021/11/05 12:0 a.m.2 views

Google TensorFlow 代码问题漏洞

Google TensorFlow, an end-to-end open source machine learning platform, is vulnerable to a null pointer dereference in the shape inference code of DeserializeSparse in versions of TensorFlow prior to 2.7.0. The vulnerability stems from the shape inference function assuming that the serializespars...

5.5CVSS5.7AI score0.00017EPSS
Exploits1References4
CNNVD
CNNVDadded 2021/11/05 12:0 a.m.3 views

Google TensorFlow 缓冲区错误漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. A buffer overflow vulnerability exists in Google TensorFlow, which stems from undefined behavior of the shape inference code of "tf.ragged.cross" due to a bound reference to "nullptr" in the...

7.8CVSS6AI score0.00018EPSS
Exploits1References4
CNNVD
CNNVDadded 2021/11/05 12:0 a.m.2 views

Google TensorFlow 缓冲区错误漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google Google. Google TensorFlow is vulnerable to a buffer overflow vulnerability that stems from Transpose's shape inference function being vulnerable to a heap buffer overflow. No details of the vulnerability are...

7.8CVSS6.2AI score0.0002EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2021/11/05 12:0 a.m.2 views

PT-2021-23178 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.7.0 TensorFlow version 2.6.1 TensorFlow version 2.5.2 TensorFlow version 2.4.4 Description: Several TensorFlow operations are missing validation for the shapes of the tensor arguments involved in the call...

7.8CVSS7.5AI score0.0001EPSS
Exploits0References20
Rows per page
Query Builder