CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

797 matches found

PyPA•added 2021/08/12 11:15 p.m.•4 views

PYSEC-2021-788

TensorFlow is an end-to-end open source platform for machine learning. In affected versions the shape inference code for tf.rawops.Dequantize has a vulnerability that could trigger a denial of service via a segfault if an attacker provides invalid arguments. The shape inference implementation use...

5.5CVSS7.1AI score0.00009EPSS

Exploits0References2Affected Software1

PyPA•added 2021/08/12 11:15 p.m.•5 views

PYSEC-2021-590

5.5CVSS7.1AI score0.00009EPSS

Exploits0References2Affected Software1

OSV•added 2021/08/12 11:15 p.m.•0 views

PYSEC-2021-299

5.5CVSS6.1AI score0.00009EPSS

Exploits0References2

PyPA•added 2021/08/12 11:15 p.m.•4 views

PYSEC-2021-299

5.5CVSS7.1AI score0.00009EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2021/08/12 11:15 p.m.•4 views

CVE-2021-37677

5.5CVSS5.8AI score0.00009EPSS

Exploits0References3Affected Software1

OSV•added 2021/08/12 11:15 p.m.•2 views

PYSEC-2021-788

5.5CVSS6.1AI score0.00009EPSS

Exploits0References2

Cvelist•added 2021/08/12 11:10 p.m.•13 views

CVE-2021-37690 Use after free and segfault in shape inference functions in TensorFlow

TensorFlow is an end-to-end open source platform for machine learning. In affected versions when running shape functions, some functions such as MutableHashTableShape produce extra output information in the form of a ShapeAndType struct. The shapes embedded in this struct are owned by an inferenc...

6.6CVSS7AI score0.00024EPSS

Exploits0References2

Debian CVE•added 2021/08/12 11:10 p.m.•1 views

CVE-2021-37690

6.6CVSS6.9AI score0.00024EPSS

Exploits0

CVE•added 2021/08/12 11:10 p.m.•124 views

CVE-2021-37690

CVE-2021-37690 concerns a denial-of-service/segfault risk in TensorFlow’s shape inference, arising when shape information in a ShapeAndType struct is accessed after an inference context is cleaned up. The core issue was that shapes and types were not cloned under ownership like other outputs, lea...

6.6CVSS6.7AI score0.00024EPSS

Exploits0References2Affected Software1

Cvelist•added 2021/08/12 10:35 p.m.•13 views

CVE-2021-37677 Missing validation in shape inference for `Dequantize` in TensorFlow

5.5CVSS6.1AI score0.00009EPSS

Exploits0References2

OSV•added 2021/08/12 10:15 p.m.•0 views

PYSEC-2021-297

TensorFlow is an end-to-end open source platform for machine learning. In affected versions most implementations of convolution operators in TensorFlow are affected by a division by 0 vulnerability where an attacker can trigger a denial of service via a crash. The shape inference implementation i...

5.5CVSS6AI score0.00012EPSS

Exploits0References2

OSV•added 2021/08/12 10:15 p.m.•0 views

PYSEC-2021-786

5.5CVSS6AI score0.00012EPSS

Exploits0References2

PyPA•added 2021/08/12 10:15 p.m.•5 views

PYSEC-2021-297

5.5CVSS6.8AI score0.00012EPSS

Exploits0References2Affected Software1

Prion•added 2021/08/12 10:15 p.m.•15 views

Design/Logic Flaw

2.1CVSS5.5AI score0.00012EPSS

Exploits0References2Affected Software1

OSV•added 2021/08/12 10:15 p.m.•0 views

PYSEC-2021-787

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in tf.rawops.SparseFillEmptyRows. The shape inference implementation does not validate that the input arguments are not empt...

7.8CVSS6.8AI score0.00013EPSS

Exploits0References2

PyPA•added 2021/08/12 10:15 p.m.•3 views

PYSEC-2021-588

5.5CVSS6.8AI score0.00012EPSS

Exploits0References2Affected Software1

PyPA•added 2021/08/12 10:15 p.m.•4 views

PYSEC-2021-786

5.5CVSS6.8AI score0.00012EPSS

Exploits0References2Affected Software1

Prion•added 2021/08/12 10:15 p.m.•14 views

Null pointer dereference