Lucene search
K

404 matches found

OSV
OSV
added 2024/03/06 11:16 a.m.26 views

BIT-TENSORFLOW-2021-37681 Null pointer exception in TensorFlow Lite

TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of SVDF in TFLite is vulnerable to a null pointer error. The GetVariableInput function can return a null pointer but GetTensorData assumes that the argument is always a valid tensor...

7.8CVSS7.6AI score0.00173EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:16 a.m.29 views

BIT-TENSORFLOW-2021-37685 Heap OOB in TensorFlow Lite

TensorFlow is an end-to-end open source platform for machine learning. In affected versions TFLite's expanddims.cc contains a vulnerability which allows reading one element outside of bounds of heap allocated data. If axis is a large negative value e.g., -100000, then after the first if it would...

5.5CVSS5.6AI score0.00172EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:16 a.m.24 views

BIT-TENSORFLOW-2021-37688 Null pointer dereference in TensorFlow Lite

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can craft a TFLite model that would trigger a null pointer dereference, which would result in a crash and denial of service. The implementation unconditionally dereferences a pointer. We have...

7.8CVSS6.2AI score0.00165EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:16 a.m.13 views

BIT-TENSORFLOW-2021-41196 Crash in `max_pool3d` when size argument is 0 or negative

TensorFlow is an open source platform for machine learning. In affected versions the Keras pooling layers can trigger a segfault if the size of the pool is 0 or if a dimension is negative. This is due to the TensorFlow's implementation of pooling operations where the values in the sliding window...

5.5CVSS5.5AI score0.0023EPSS
Exploits1References4
OSV
OSV
added 2024/03/06 11:16 a.m.15 views

BIT-TENSORFLOW-2021-41200 Incomplete validation in `tf.summary.create_file_writer`

TensorFlow is an open source platform for machine learning. In affected versions if tf.summary.createfilewriter is called with non-scalar arguments code crashes due to a CHECK-fail. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow...

5.5CVSS5.7AI score0.0023EPSS
Exploits1References4
OSV
OSV
added 2024/03/06 11:16 a.m.18 views

BIT-TENSORFLOW-2021-41202 Overflow/crash in `tf.range`

TensorFlow is an open source platform for machine learning. In affected versions while calculating the size of the output within the tf.range kernel, there is a conditional statement of type int64 = condition ? int64 : double. Due to C++ implicit conversion rules, both branches of the condition...

5.5CVSS5.5AI score0.00202EPSS
Exploits0References6
OSV
OSV
added 2024/03/06 11:16 a.m.28 views

BIT-TENSORFLOW-2021-41204 Segfault while copying constant resource tensor

TensorFlow is an open source platform for machine learning. In affected versions during TensorFlow's Grappler optimizer phase, constant folding might attempt to deep copy a resource tensor. This results in a segfault, as these tensors are supposed to not change. The fix will be included in...

5.5CVSS5.5AI score0.00136EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:16 a.m.19 views

BIT-TENSORFLOW-2021-41205 Heap OOB read in all `tf.raw_ops.QuantizeAndDequantizeV*` ops

TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for the QuantizeAndDequantizeV operations can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit ...

7.1CVSS6.9AI score0.00148EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:16 a.m.15 views

BIT-TENSORFLOW-2021-41207 Division by zero in `ParallelConcat`

TensorFlow is an open source platform for machine learning. In affected versions the implementation of ParallelConcat misses some input validation and can produce a division by 0. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow...

5.5CVSS5.6AI score0.00136EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:16 a.m.17 views

BIT-TENSORFLOW-2021-41209 FPE in convolutions with zero size filters

TensorFlow is an open source platform for machine learning. In affected versions the implementations for convolution operators trigger a division by 0 if passed empty filter tensor arguments. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1,...

5.5CVSS5.6AI score0.00136EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:16 a.m.12 views

BIT-TENSORFLOW-2021-41214 Reference binding to `nullptr` in `tf.ragged.cross`

TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for tf.ragged.cross has an undefined behavior due to binding a reference to nullptr. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1,...

7.8CVSS7.6AI score0.0021EPSS
Exploits1References3
OSV
OSV
added 2024/03/06 11:16 a.m.16 views

BIT-TENSORFLOW-2021-41216 Heap buffer overflow in `Transpose`

TensorFlow is an open source platform for machine learning. In affected versions the shape inference function for Transpose is vulnerable to a heap buffer overflow. This occurs whenever perm contains negative elements. The shape inference function does not validate that the indices in perm are al...

7.8CVSS7.7AI score0.00156EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:16 a.m.17 views

BIT-TENSORFLOW-2021-41217 Null pointer exception when `Exit` node is not preceded by `Enter` op

TensorFlow is an open source platform for machine learning. In affected versions the process of building the control flow graph for a TensorFlow model is vulnerable to a null pointer exception when nodes that should be paired are not. This occurs because the code assumes that the first node in th...

5.5CVSS5.6AI score0.00181EPSS
Exploits1References3
OSV
OSV
added 2024/03/06 11:16 a.m.18 views

BIT-TENSORFLOW-2021-41218 Integer division by 0 in `tf.raw_ops.AllToAll`

TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for AllToAll can be made to execute a division by 0. This occurs whenever the splitcount argument is 0. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:16 a.m.29 views

BIT-TENSORFLOW-2021-41221 Access to invalid memory during shape inference in `Cudnn*` ops

TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for the Cudnn operations in TensorFlow can be tricked into accessing invalid memory, via a heap buffer overflow. This occurs because the ranks of the input, inputh and inputc parameters are n...

7.8CVSS7.8AI score0.00214EPSS
Exploits1References3
OSV
OSV
added 2024/03/06 11:16 a.m.18 views

BIT-TENSORFLOW-2021-41224 `SparseFillEmptyRows` heap OOB read

TensorFlow is an open source platform for machine learning. In affected versions the implementation of SparseFillEmptyRows can be made to trigger a heap OOB access. This occurs whenever the size of indices does not match the size of values. The fix will be included in TensorFlow 2.7.0. We will al...

7.1CVSS6.8AI score0.00201EPSS
Exploits1References3
OSV
OSV
added 2024/03/06 11:15 a.m.17 views

BIT-TENSORFLOW-2021-41226 Heap OOB read in `SparseBinCount`

TensorFlow is an open source platform for machine learning. In affected versions the implementation of SparseBinCount is vulnerable to a heap OOB access. This is because of missing validation between the elements of the values argument and the shape of the sparse output. The fix will be included ...

7.1CVSS6.8AI score0.00201EPSS
Exploits1References3
OSV
OSV
added 2024/03/06 11:15 a.m.16 views

BIT-TENSORFLOW-2022-21725 Division by zero in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The estimator for the cost of some convolution operations can be made to execute a division by 0. The function fails to check that the stride argument is strictly positive. Hence, the fix is to add a check for the stride argument to ensure ...

6.5CVSS6.7AI score0.00783EPSS
Exploits1References4
OSV
OSV
added 2024/03/06 11:15 a.m.16 views

BIT-TENSORFLOW-2022-21732 Memory exhaustion in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of ThreadPoolHandle can be used to trigger a denial of service attack by allocating too much memory. This is because the numthreads argument is only checked to not be negative, but there is no upper bound on its value. Th...

6.5CVSS5.2AI score0.00765EPSS
Exploits1References4
OSV
OSV
added 2024/03/06 11:15 a.m.17 views

BIT-TENSORFLOW-2022-21733 Memory exhaustion in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of StringNGrams can be used to trigger a denial of service attack by causing an out of memory condition after an integer overflow. We are missing a validation on padwitdh and that result in computing a negative value for...

6.5CVSS5.3AI score0.00821EPSS
Exploits1References4
Rows per page
Query Builder