14315 matches found
PYSEC-2026-548 TensorFlow has a heap out-of-buffer read vulnerability in the QuantizeAndDequantize operation
Impact Attackers using Tensorflow can exploit the vulnerability. They can access heap memory which is not in the control of user, leading to a crash or RCE. When axis is larger than the dim of input, c-Diminput,axis goes out of bound. Same problem occurs in the QuantizeAndDequantizeV2/V3/V4/V4Gra...
PYSEC-2026-549 TensorFlow has a heap out-of-buffer read vulnerability in the QuantizeAndDequantize operation
Impact Attackers using Tensorflow can exploit the vulnerability. They can access heap memory which is not in the control of user, leading to a crash or RCE. When axis is larger than the dim of input, c-Diminput,axis goes out of bound. Same problem occurs in the QuantizeAndDequantizeV2/V3/V4/V4Gra...
PYSEC-2026-550 TensorFlow has a heap out-of-buffer read vulnerability in the QuantizeAndDequantize operation
Impact Attackers using Tensorflow can exploit the vulnerability. They can access heap memory which is not in the control of user, leading to a crash or RCE. When axis is larger than the dim of input, c-Diminput,axis goes out of bound. Same problem occurs in the QuantizeAndDequantizeV2/V3/V4/V4Gra...
PYSEC-2026-369 Keras code injection vulnerability
A arbitrary code injection vulnerability in TensorFlow's Keras framework 2.13 allows attackers to execute arbitrary code with the same permissions as the application using a model that allow arbitrary code irrespective of the application...
CVE-2026-44727 vulnerabilities
Vulnerabilities for packages: tensorflow-gpu-jupyter, tensorflow-cpu-jupyter...
GHSA-VMHF-C436-HXJ4 vulnerabilities
Vulnerabilities for packages: tensorflow-gpu-jupyter...
GHSA-FCW5-X6J4-CCMP vulnerabilities
Vulnerabilities for packages: tensorflow-gpu-jupyter, tensorflow-cpu-jupyter...
GHSA-FCW5-X6J4-CCMP vulnerabilities
Vulnerabilities for packages: tensorflow-cpu-jupyter...
CVE-2026-44727 vulnerabilities
Vulnerabilities for packages: tensorflow-cpu-jupyter...
CVE-2026-49854 vulnerabilities
Vulnerabilities for packages: tensorflow-cpu-jupyter, mitmproxy, airflow...
GHSA-CX3H-4QPV-8HC9 vulnerabilities
Vulnerabilities for packages: tensorflow-cpu-jupyter, mitmproxy, airflow...
CVE-2026-49854 vulnerabilities
Vulnerabilities for packages: litellm, airflow, mitmproxy, tensorflow-gpu-jupyter, tensorflow-cpu-jupyter...
GHSA-CX3H-4QPV-8HC9 vulnerabilities
Vulnerabilities for packages: litellm, airflow, mitmproxy, tensorflow-gpu-jupyter, tensorflow-cpu-jupyter...
CVE-2026-42627
In Arm ArmNN through 2026-03-27, an integer overflow in TensorShape::GetNumElements in armnn/Tensor.cpp allows a crafted TFLite model file to bypass buffer size validation and trigger a heap-based buffer over-read during model optimization. The overflow occurs when multiplying tensor dimensions...
UBUNTU-CVE-2026-42627
In Arm ArmNN through 2026-03-27, an integer overflow in TensorShape::GetNumElements in armnn/Tensor.cpp allows a crafted TFLite model file to bypass buffer size validation and trigger a heap-based buffer over-read during model optimization. The overflow occurs when multiplying tensor dimensions...
PT-2026-42819
Name of the Vulnerable Software and Affected Versions Arm ArmNN versions prior to 2026-03-28 Description An integer overflow exists in the TensorShape::GetNumElements function within armnn/Tensor.cpp. This occurs when tensor dimensions are multiplied using 32-bit unsigned arithmetic without...
EUVD-2026-31476
In Arm ArmNN through 2026-03-27, an integer overflow in TensorShape::GetNumElements in armnn/Tensor.cpp allows a crafted TFLite model file to bypass buffer size validation and trigger a heap-based buffer over-read during model optimization. The overflow occurs when multiplying tensor dimensions...
CVE-2026-42627
In Arm ArmNN through 2026-03-27, an integer overflow in TensorShape::GetNumElements in armnn/Tensor.cpp allows a crafted TFLite model file to bypass buffer size validation and trigger a heap-based buffer over-read during model optimization. The overflow occurs when multiplying tensor dimensions...
CVE-2026-42627
In Arm ArmNN through 2026-03-27, an integer overflow in TensorShape::GetNumElements in armnn/Tensor.cpp allows a crafted TFLite model file to bypass buffer size validation and trigger a heap-based buffer over-read during model optimization. The overflow occurs when multiplying tensor dimensions...
CVE-2026-40171 vulnerabilities
Vulnerabilities for packages: jupyter-base-notebook, tensorflow-cpu-jupyter...