Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 8:44 a.m.7 views

CVE-2022-23560

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would allow limited reads and writes outside of arrays in TFLite. This exploits missing validation in the conversion from sparse tensors to dense tensors. The fix is included in TensorFlow 2.8.0. We...

8.8CVSS6.5AI score0.00296EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2021-0350

Malware in sbrugna...

7.8CVSS7.5AI score0.00019EPSS
Exploits1References10
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2021-0262

Malware in sbrugna...

5.5CVSS5.3AI score0.00009EPSS
Exploits1References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-0344

Malware in sbrugna...

7.8CVSS7.5AI score0.00011EPSS
Exploits1References10
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-2351

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00036EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/02/06 4:46 a.m.3 views

CVE-2021-37689

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can craft a TFLite model that would trigger a null pointer dereference, which would result in a crash and denial of service. This is caused by the MLIR optimization of L2NormalizeReduceAxis...

7.8CVSS6.5AI score0.00013EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2022/11/18 12:0 a.m.7 views

CVE-2022-41909 Segfault in `CompositeTensorVariantToComponents` in Tensorflow

TensorFlow is an open source platform for machine learning. An input encoded that is not a valid CompositeTensorVariant tensor will trigger a segfault in tf.rawops.CompositeTensorVariantToComponents. We have patched the issue in GitHub commits bf594d08d377dc6a3354d9fdb494b32d45f91971 and...

4.8CVSS7.1AI score0.00484EPSS
Exploits1References4
PyPA
PyPAadded 2021/05/14 8:15 p.m.5 views

PYSEC-2021-152

TensorFlow is an end-to-end open source platform for machine learning. The implementation of MatrixDiag operationshttps://github.com/tensorflow/tensorflow/blob/4c4f420e68f1cfaf8f4b6e8e3eb857e9e4c3ff33/tensorflow/core/kernels/linalg/matrixdiagop.ccL195-L197 does not validate that the tensor...

7.8CVSS7AI score0.00011EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2021/05/14 7:17 p.m.84 views

CVE-2021-29559

The CVE-2021-29559 case concerns TensorFlow’s UnicodeEncode in tf.raw_ops, where heap-out-of-bounds access can occur if input_value/input_splits do not form a valid sparse tensor. Root cause: implementation assumes a valid sparse tensor, enabling data access outside heap bounds. The issue is fixe...

7.1CVSS5.2AI score0.00011EPSS
Exploits1References2Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2020/07/17 11:2 p.m.40 views

Security Bulletin: WMLCE: libpcre in PCRE before 8.44 allows an integer overflow

Summary PCRE, which is using in TensorFlow allows an integer overflow via a large number after a ?C substring. Vulnerability Details CVEID: CVE-2020-14155 DESCRIPTION: PCRE could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow in libpcre. By sending ...

5.3CVSS1.9AI score0.0023EPSS
Exploits0Affected Software1
Rows per page
Query Builder