Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

888 matches found

OSV
OSVadded 2020/09/25 7:15 p.m.21 views

PYSEC-2020-276

In Tensorflow version 2.3.0, the SparseCountSparseOutput and RaggedCountSparseOutput implementations don't validate that the weights tensor has the same shape as the data. The check exists for DenseCountSparseOutput, where both tensors are fully specified. In the sparse and ragged count weights a...

9.9CVSS2.1AI score0.00302EPSS
Exploits1References3
PyPA
PyPAadded 2020/09/25 7:15 p.m.5 views

PYSEC-2020-309

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the SparseFillEmptyRowsGrad implementation has incomplete validation of the shapes of its arguments. Although reverseindexmapt and gradvaluest are accessed in a similar pattern, only reverseindexmapt is validated to be of proper...

5.3CVSS6.8AI score0.0022EPSS
Exploits1References4Affected Software1
PyPA
PyPAadded 2020/09/25 7:15 p.m.5 views

PYSEC-2020-277

In Tensorflow before version 2.3.1, the SparseCountSparseOutput implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the indices tensor has rank 2. This tensor must be a matrix because code assumes its elements are access...

6.3CVSS6.9AI score0.0022EPSS
Exploits1References3Affected Software1
PyPA
PyPAadded 2020/09/25 7:15 p.m.6 views

PYSEC-2020-120

In Tensorflow before version 2.3.1, the SparseCountSparseOutput implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the indices tensor has rank 2. This tensor must be a matrix because code assumes its elements are access...

6.3CVSS6.9AI score0.0022EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2020/09/25 7:15 p.m.1 views

PYSEC-2020-120

In Tensorflow before version 2.3.1, the SparseCountSparseOutput implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the indices tensor has rank 2. This tensor must be a matrix because code assumes its elements are access...

6.3CVSS6.6AI score0.0022EPSS
Exploits1References3
Prion
Prionadded 2020/09/25 7:15 p.m.16 views

Information disclosure

In Tensorflow before version 2.3.1, the SparseCountSparseOutput implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the indices tensor has rank 2. This tensor must be a matrix because code assumes its elements are access...

3.5CVSS6.1AI score0.0022EPSS
Exploits1References3Affected Software1
PyPA
PyPAadded 2020/09/25 7:15 p.m.5 views

PYSEC-2020-276

In Tensorflow version 2.3.0, the SparseCountSparseOutput and RaggedCountSparseOutput implementations don't validate that the weights tensor has the same shape as the data. The check exists for DenseCountSparseOutput, where both tensors are fully specified. In the sparse and ragged count weights a...

9.9CVSS7AI score0.00302EPSS
Exploits1References3Affected Software1
PyPA
PyPAadded 2020/09/25 7:15 p.m.5 views

PYSEC-2020-119

In Tensorflow version 2.3.0, the SparseCountSparseOutput and RaggedCountSparseOutput implementations don't validate that the weights tensor has the same shape as the data. The check exists for DenseCountSparseOutput, where both tensors are fully specified. In the sparse and ragged count weights a...

9.9CVSS7AI score0.00302EPSS
Exploits1References3Affected Software1
PyPA
PyPAadded 2020/09/25 7:15 p.m.3 views

PYSEC-2020-311

In Tensorflow version 2.3.0, the SparseCountSparseOutput and RaggedCountSparseOutput implementations don't validate that the weights tensor has the same shape as the data. The check exists for DenseCountSparseOutput, where both tensors are fully specified. In the sparse and ragged count weights a...

9.9CVSS7AI score0.00302EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2020/09/25 7:15 p.m.0 views

PYSEC-2020-122

In Tensorflow before version 2.3.1, the RaggedCountSparseOutput does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the splits tensor has the minimum required number of elements. Code uses this quantity to initialize a different data...

5.9CVSS5.9AI score0.00239EPSS
Exploits1References3
OSV
OSVadded 2020/09/25 7:15 p.m.0 views

PYSEC-2020-311

In Tensorflow version 2.3.0, the SparseCountSparseOutput and RaggedCountSparseOutput implementations don't validate that the weights tensor has the same shape as the data. The check exists for DenseCountSparseOutput, where both tensors are fully specified. In the sparse and ragged count weights a...

9.9CVSS7.3AI score0.00302EPSS
Exploits1References3
OSV
OSVadded 2020/09/25 7:15 p.m.3 views

PYSEC-2020-274

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the SparseFillEmptyRowsGrad implementation has incomplete validation of the shapes of its arguments. Although reverseindexmapt and gradvaluest are accessed in a similar pattern, only reverseindexmapt is validated to be of proper...

5.3CVSS6.1AI score0.0022EPSS
Exploits1References4
Debian CVE
Debian CVEadded 2020/09/25 6:40 p.m.4 views

CVE-2020-15194

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the SparseFillEmptyRowsGrad implementation has incomplete validation of the shapes of its arguments. Although reverseindexmapt and gradvaluest are accessed in a similar pattern, only reverseindexmapt is validated to be of proper...

5.3CVSS6.8AI score0.0022EPSS
Exploits1
Debian CVE
Debian CVEadded 2020/09/25 6:40 p.m.1 views

CVE-2020-15196

In Tensorflow version 2.3.0, the SparseCountSparseOutput and RaggedCountSparseOutput implementations don't validate that the weights tensor has the same shape as the data. The check exists for DenseCountSparseOutput, where both tensors are fully specified. In the sparse and ragged count weights a...

9.9CVSS7.1AI score0.00302EPSS
Exploits1
Cvelist
Cvelistadded 2020/09/25 6:40 p.m.18 views

CVE-2020-15197 Denial of Service in Tensorflow

In Tensorflow before version 2.3.1, the SparseCountSparseOutput implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the indices tensor has rank 2. This tensor must be a matrix because code assumes its elements are access...

6.3CVSS6.2AI score0.0022EPSS
Exploits1References3
CVE
CVEadded 2020/09/25 6:40 p.m.84 views

CVE-2020-15198

CVE-2020-15198 affects TensorFlow up to 2.3.0: SparseCountSparseOutput may access heap buffers out of bounds due to missing validation that indices and values shapes match in a sparse tensor. This root cause enables a heap buffer overflow in pre-2.3.1 builds. A fix was committed (3cbb917b47147660...

5.8CVSS5.3AI score0.00169EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2020/09/25 6:28 p.m.2 views

GHSA-QC53-44CJ-VFVX Denial of Service in Tensorflow

Impact The SparseCountSparseOutput implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the indices tensor has rank 2. This tensor must be a matrix because code assumes its elements are accessed as elements of a matrix:...

6.3CVSS6.6AI score0.0022EPSS
Exploits1References8
OSV
OSVadded 2020/09/25 6:28 p.m.1 views

GHSA-63XM-RX5P-XVQR Heap buffer overflow in Tensorflow

Impact The implementation of SparseFillEmptyRowsGrad uses a double indexing pattern: https://github.com/tensorflow/tensorflow/blob/0e68f4d3295eb0281a517c3662f6698992b7b2cf/tensorflow/core/kernels/sparsefillemptyrowsop.ccL263-L269 It is possible for reverseindexmapi to be an index outside of bound...

8.5CVSS7.1AI score0.00355EPSS
Exploits1References9
OSV
OSVadded 2020/09/25 6:28 p.m.0 views

GHSA-X5CP-9PCF-PP3H Denial of Service in Tensorflow

Impact The RaggedCountSparseOutput does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the splits tensor has the minimum required number of elements. Code uses this quantity to initialize a different data structure:...

8.2CVSS6.3AI score0.00239EPSS
Exploits1References8
Github Security Blog
Github Security Blogadded 2020/09/25 6:28 p.m.47 views

Heap buffer overflow in Tensorflow

Impact The SparseCountSparseOutput implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the indices tensor has the same shape as the values one. The values in these tensors are always accessed in parallel:...

5.8CVSS1.4AI score0.00169EPSS
Exploits1References8Affected Software3
Rows per page
Query Builder