14329 matches found
Google TensorFlow numeric error vulnerability (CNVD-2022-14993)
TensorFlow is an end-to-end open source platform for machine learning from Google. Google TensorFlow is vulnerable to a numerical error that results from the fact that the cost estimator of certain convolution operations can be used to perform an operation divided by zero, and the function fails ...
Google TensorFlow has an unspecified vulnerability (CNVD-2022-14995)
TensorFlow is an end-to-end open-source platform for machine learning from Google. Google TensorFlow has a security vulnerability that can be exploited by attackers to cause a denial of service...
Google TensorFlow code issue vulnerability (CNVD-2022-14996)
Google TensorFlow is an end-to-end open source platform for machine learning from Google Google. Google Tensorflow is vulnerable to a code issue that stems from an undefined behavior in the QuantizedMaxPool implementation, where user-controlled input can trigger a reference binding to a null...
Google TensorFlow numeric error vulnerability (CNVD-2022-14992)
TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google TensorFlow is vulnerable to a numeric error vulnerability that could be exploited by an attacker to craft a TFLite model that would trigger a division by zero in a deep convolutional implementation...
Google TensorFlow Input Validation Error Vulnerability (CNVD-2022-14991)
TensorFlow is an end-to-end open source platform for machine learning from Google. Google TensorFlow is vulnerable to an input validation error that could be exploited by an attacker to crash the system...
Google TensorFlow buffer overflow vulnerability (CNVD-2022-11507)
Google TensorFlow is an end-to-end open source platform for machine learning from Google Google. Google Tensorflow has a buffer overflow vulnerability, which stems from the implementation of ReverseSequence's shape inference does not fully validate the value of batch dim, and an attacker can...
Google TensorFlow code issue vulnerability (CNVD-2022-11512)
Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google Tensorflow is vulnerable to a code issue that could be exploited by an attacker to deny service by passing in parameters that would trigger a CHECK failure...
Google TensorFlow buffer overflow vulnerability (CNVD-2022-11509)
Google TensorFlow is an end-to-end open source platform for machine learning from Google Google. Google Tensorflow has a buffer overflow vulnerability that stems from the fact that Dequantize's implementation does not fully validate the value of axis, which can be exploited by an attacker to caus...
Google TensorFlow buffer overflow vulnerability (CNVD-2022-11510)
Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google TensorFlow has a buffer overflow vulnerability, which stems from the fact that the implementation of SparseCountSparseOutput is prone to heap overflow and can be exploited by an attacker to cause ...
Google TensorFlow Input Validation Error Vulnerability (CNVD-2022-11511)
Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google Tensorflow is vulnerable to an input validation error, which can be exploited by attackers to cause a denial of service...
Google TensorFlow Input Validation Error Vulnerability (CNVD-2022-11505)
Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google Tensorflow is vulnerable to an input validation error, which can be exploited by attackers to cause a denial of service...
Google TensorFlow buffer overflow vulnerability (CNVD-2022-11506)
Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google Tensorflow suffers from a buffer overflow vulnerability that stems from the fact that the implementation of FractionalAvgPoolGrad does not account for invalid input tensor, which can be exploited ...
Google TensorFlow Input Validation Error Vulnerability (CNVD-2022-11508)
Google TensorFlow is an end-to-end open source platform for machine learning from Google Google. Google Tensorflow suffers from an input validation error vulnerability, which stems from the fact that implementations of dequantized shape inference are vulnerable to integer overflow weaknesses, whi...
Google TensorFlow Input Validation Error Vulnerability (CNVD-2022-11504)
Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google Tensorflow suffers from an input validation error vulnerability, which can be exploited by an attacker to cause a CHECK failure denial-of-service based assertion failure and result in a denial of...
Denial Of Service (DoS)
tensorflow is vulnerable to denial of service. The vulnerability exists due to a memory leak in the implementation of ImmutableExecutorState::Initialize...
Denial Of Service (DoS)
tensorflow is vulnerable to denial of service. The use of a const qualifier in constantfolding.cc, leading to a CHECK-failure assertion failure...
Denial Of Service (DoS)
tensorflow is vulnerable to denial of service. An attacker is able to cause CHECK-fail via malicious arguments, causing an application crash...
Integer Overflow
tensorflow is vulnerable to integer overflow. The vulnerability exists in CalculateTensorSize function of oplevelcostestimator.cc because the input size has not been checked which allows an attacker to insert large numbers of elements that causes an application crash...
Integer Overflow
tensorflow is vulnerable to integer overflow. The vulnerability exists in OpLevelCostEstimator::CalculateOutputSize function of oplevelcostestimator.cc because it doesn't validate the size of the user input which leads to an application crash...
rpnet (>=0.0.1 <=0.1.0), rpnet-dev (>=0.0.5 <=0.0.12) +4 more potentially affected by CVE-2022-23583 via tensorflow-gpu (=2.7.0)
tensorflow-gpu PYPI version =2.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - rpnet =0.0.1, =0.0.5, =1.0.5, =1.1.1 - tpu-tf2 =1.0.0 - troj =1.0.0 Source cves: CVE-2022-23583 Source advisory:...