CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

7.6CVSS6.5AI score0.00725EPSS

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +97 more potentially affected by CVE-2022-23584 via tensorflow-cpu (>=1.15.0 <=2.4.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2022-23584 Source advisory: OSV:PYSEC-2022-93...

6.5CVSS6.5AI score0.00757EPSS

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +97 more potentially affected by CVE-2022-23557 via tensorflow-cpu (>=1.15.0 <=2.4.4)

8.8CVSS7.2AI score0.00837EPSS

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-23574 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-23574 Source advisory: OSV:PYSEC-2022-138...

vulnersOsv•added 2022/02/04 11:15 p.m.•3 views

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-23591 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-23591 Source advisory: OSV:PYSEC-2022-155...

7.5CVSS7.1AI score0.00789EPSS

Exploits0

PyPA•added 2022/02/04 11:15 p.m.•5 views

PYSEC-2022-154

Tensorflow is an Open Source Machine Learning Framework. A GraphDef from a TensorFlow SavedModel can be maliciously altered to cause a TensorFlow process to crash due to encountering a StatusOr value that is an error and forcibly extracting the value from it. We have patched the issue in multiple...

7.5CVSS7AI score0.00973EPSS

8.8CVSS7.2AI score0.00578EPSS

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +97 more potentially affected by CVE-2022-23562 via tensorflow-cpu (>=1.15.0 <=2.4.4)

Exploits0

9.8CVSS7.2AI score0.00888EPSS

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-23587 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-23587 Source advisory: OSV:PYSEC-2022-151...

8.8CVSS7.2AI score0.00811EPSS

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-23558 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-23558 Source advisory: OSV:PYSEC-2022-122...

vulnersOsv•added 2022/02/04 11:15 p.m.•2 views

animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-23559 via tensorflow-gpu (>=2.6.0 <=2.6.2)

tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-23559 Source advisory: OSV:PYSEC-2022-123...

8.8CVSS7.2AI score0.01173EPSS

Prion•added 2022/02/04 11:15 p.m.•20 views

Stack overflow

Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a SavedModel such that TensorByteSize would trigger CHECK failures. TensorShape constructor throws a CHECK-fail if shape is partial or has a number of elements that would overflow t...

4CVSS6.4AI score0.00783EPSS

vulnersOsv•added 2022/02/04 11:15 p.m.•5 views

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +170 more potentially affected by CVE-2022-23581 via tensorflow-gpu (>=1.10.1 <=2.5.1)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 - cctv-analysis =0.0.2 and more Source cves: CVE-2022-23581 Source advisory: OSV:PYSEC-2022-145...

6.5CVSS6.5AI score0.012EPSS

6.5CVSS6.5AI score0.00864EPSS

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +170 more potentially affected by CVE-2022-23588 via tensorflow-gpu (>=1.10.1 <=2.5.1)

vulnersOsv•added 2022/02/04 11:15 p.m.•3 views

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +97 more potentially affected by CVE-2022-23566 via tensorflow-cpu (>=1.15.0 <=2.4.4)

8.8CVSS7.2AI score0.00924EPSS

6.5CVSS6.5AI score0.00757EPSS

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +170 more potentially affected by CVE-2022-23557 via tensorflow-gpu (>=1.10.1 <=2.5.1)

PyPA•added 2022/02/04 11:15 p.m.•6 views

PYSEC-2022-66

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would trigger a division by zero in BiasAndClamp implementation. There is no check that the biassize is non zero. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on...

6.5CVSS7AI score0.00757EPSS

Prion•added 2022/02/04 11:15 p.m.•17 views

Stack overflow

Tensorflow is an Open Source Machine Learning Framework. The Grappler optimizer in TensorFlow can be used to cause a denial of service by altering a SavedModel such that SafeToRemoveIdentity would trigger CHECK failures. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this...

5CVSS6.4AI score0.00821EPSS

vulnersOsv•added 2022/02/04 11:15 p.m.•3 views

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +97 more potentially affected by CVE-2022-23558 via tensorflow-cpu (>=1.15.0 <=2.4.4)

8.8CVSS7.2AI score0.00811EPSS

Prion•added 2022/02/04 11:15 p.m.•22 views

Stack overflow

Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a SavedModel such that assertions in function.cc would be falsified and crash the Python interpreter. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this comm...

4CVSS6.4AI score0.008EPSS

Exploits1References4Affected Software1

vulnersOsv•added 2022/02/04 11:15 p.m.•7 views

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +170 more potentially affected by CVE-2022-23585 via tensorflow-gpu (>=1.10.1 <=2.5.1)

6.5CVSS6.5AI score0.00992EPSS