Lucene search
K

14329 matches found

CNNVD
CNNVD
added 2022/02/04 12:0 a.m.4 views

Google Tensorflow 安全漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc...

6.5CVSS5.5AI score0.00992EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/02/04 12:0 a.m.3 views

PT-2022-16102 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.8.0 TensorFlow version 2.7.1 TensorFlow version 2.6.3 TensorFlow version 2.5.3 Description: When decoding PNG images, TensorFlow can produce a memory leak if the image is invalid. After calling...

6.5CVSS6.3AI score0.00992EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2022/02/04 12:0 a.m.7 views

PT-2022-16103 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.8.0 TensorFlow versions 2.7.1 and earlier TensorFlow versions 2.6.3 and earlier TensorFlow versions 2.5.3 and earlier Description: A malicious user can cause a denial of service by altering a SavedModel such tha...

6.5CVSS6.2AI score0.008EPSS
Exploits1References14
Positive Technologies
Positive Technologies
added 2022/02/04 12:0 a.m.3 views

PT-2022-16076 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions 2.5.3 through 2.7.1 TensorFlow version 2.8.0 is not affected, as it includes the fix. Description: An attacker can craft a TFLite model that would allow limited reads and writes outside of arrays in TFLite. This exploits...

8.8CVSS8.5AI score0.00837EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2022/02/04 12:0 a.m.3 views

PT-2022-16073 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.8.0 TensorFlow versions 2.7.1 and earlier TensorFlow versions 2.6.3 and earlier TensorFlow versions 2.5.3 and earlier Description: An attacker can craft a TFLite model that would cause an integer overflow in...

8.8CVSS8.7AI score0.00811EPSS
Exploits1References14
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.12 views

Google Tensorflow 安全漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google Google Inc. Google TensorFlow has a security vulnerability that could be exploited by an attacker to cause a denial of service in the TensorFlow process...

6.5CVSS5.7AI score0.00469EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.5 views

Tensorflow 输入验证错误漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. An input validation error vulnerability exists in Tensorflow, which stems from the fact that the er component of TensorFlow is prone to integer overflow when estimating the cost of crop and resize, whic...

9.8CVSS5.7AI score0.00888EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/02/04 12:0 a.m.2 views

PT-2022-16104 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.8.0 TensorFlow versions 2.7.1 and earlier TensorFlow versions 2.6.3 and earlier TensorFlow versions 2.5.3 and earlier Description: The Grappler component of TensorFlow is vulnerable to an integer overflow during...

9.8CVSS9.4AI score0.00888EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2022/02/04 12:0 a.m.3 views

PT-2022-16110 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow version 2.8.0 Description: The simplifyBroadcast function in the MLIR-TFRT infrastructure is vulnerable to a segfault, resulting in a denial of service, when called with scalar shapes. If all shapes are scalar, the maxRank is 0,...

8.2CVSS7.3AI score0.0087EPSS
Exploits1References12
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.10 views

Google TensorFlow 缓冲区错误漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a buffer overflow vulnerability that can be exploited by an attacker to control the input idx variable so that ix is greater than the number of values in node .arg...

8.1CVSS6.1AI score0.00858EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/02/04 12:0 a.m.3 views

PT-2022-16109 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow version 2.8.0 Description: The type inference in TensorFlow can cause a heap out of bounds read due to inadequate bounds checking, which is done in a DCHECK that is a no-op during production. An attacker can manipulate the input id...

8.1CVSS7.8AI score0.00858EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2022/02/04 12:0 a.m.3 views

PT-2022-16112 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.8.0 TensorFlow versions 2.7.1 and earlier TensorFlow versions 2.6.3 and earlier TensorFlow versions 2.5.3 and earlier Description: The issue occurs when building an XLA compilation cache with default settings,...

6.5CVSS6.3AI score0.00774EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2022/02/04 12:0 a.m.2 views

PT-2022-16096 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.8.0 TensorFlow versions 2.7.1 and earlier TensorFlow versions 2.6.3 and earlier TensorFlow versions 2.5.3 and earlier Description: The Grappler optimizer in TensorFlow can be used to cause a denial of service by...

6.5CVSS6.2AI score0.00821EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2022/02/04 12:0 a.m.4 views

PT-2022-16097 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.8.0 TensorFlow versions 2.7.1 and earlier TensorFlow versions 2.6.3 and earlier TensorFlow versions 2.5.3 and earlier Description: During shape inference, TensorFlow can allocate a large vector based on a value...

6.5CVSS6.3AI score0.00821EPSS
Exploits1References13
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.7 views

Google TensorFlow 输入验证错误漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google, U.S. Google TensorFlow is vulnerable to an input validation error that could be exploited by an attacker to create an operation containing a tensor with enough elements to cause an integer overflow...

6.5CVSS5.7AI score0.00783EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.7 views

Google TensorFlow 资源管理错误漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a resource management error vulnerability that stems from the GraphDef format in TensorFlow not allowing self-recursive functions. No detailed vulnerability detail...

7.5CVSS5.6AI score0.00789EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.16 views

Google Tensorflow 代码问题漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow has a code issue vulnerability that stems from the simplifyBroadcast function in the MLIR-TFRT infrastructure in TensorFlow being prone to segmentation errors. No detailed...

7.5CVSS5.7AI score0.0087EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.3 views

Google Tensorflow 安全漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google. Google Tensorflow has a security vulnerability that could be exploited to cause a denial of service by modifying SavedModel to trigger a CHECK failure...

6.5CVSS5.6AI score0.00821EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.21 views

Google TensorFlow 资源管理错误漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. Google Tensorflow is vulnerable to resource management errors, which can be exploited by attackers to cause mismanagement of resources...

6.5CVSS5.6AI score0.00821EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.5 views

Google TensorFlow 缓冲区错误漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a buffer overflow vulnerability that can be exploited by an attacker to change the format of the SavedModel on disk to invalidate these assumptions, and then...

8.8CVSS6.1AI score0.00142EPSS
Exploits0References3
Rows per page
Query Builder