CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2023/03/24 11:40 p.m.•181 views

CVE-2023-25663

TensorFlow CVE-2023-25663: In affected versions prior to 2.12.0 and 2.11.1, Lookup in TensorArray/ctx handling can dereference a null pointer (ctx->step_containter()), enabling a denial of service. The issue is due to a null pointer dereference in the Lookup function when the context is not in...

7.5CVSS7.4AI score0.00206EPSS

Cvelist•added 2023/03/24 11:40 p.m.•23 views

CVE-2023-25663 TensorFlow has Null Pointer Error in TensorArrayConcatV2

TensorFlow is an open source platform for machine learning. Prior to versions 2.12.0 and 2.11.1, when ctx-stepcontainter is a null ptr, the Lookup function will be executed with a null pointer. A fix is included in TensorFlow 2.12.0 and 2.11.1...

7.5CVSS7.7AI score0.00206EPSS

OSV•added 2023/03/24 11:40 p.m.•24 views

CVE-2023-25663 TensorFlow has Null Pointer Error in TensorArrayConcatV2

7.5CVSS6.1AI score0.00206EPSS

CVE•added 2023/03/24 11:40 p.m.•190 views

CVE-2023-25664

TensorFlow CVE-2023-25664 is a heap-based buffer overflow in TAvgPoolGrad, affecting TensorFlow versions prior to 2.12.0 and 2.11.1. A fix is included in TensorFlow 2.12.0 and 2.11.1. Connected documents corroborate the vulnerability class and affected versions, and note remediation via upgrading...

9.8CVSS8.7AI score0.0009EPSS

Cvelist•added 2023/03/24 11:40 p.m.•19 views

CVE-2023-25664 TensorFlow vulnerable to Heap Buffer Overflow in AvgPoolGrad

TensorFlow is an open source platform for machine learning. Prior to versions 2.12.0 and 2.11.1, there is a heap buffer overflow in TAvgPoolGrad. A fix is included in TensorFlow 2.12.0 and 2.11.1...

7.5CVSS9.8AI score0.0009EPSS

OSV•added 2023/03/24 11:40 p.m.•23 views

CVE-2023-25664 TensorFlow vulnerable to Heap Buffer Overflow in AvgPoolGrad

TensorFlow is an open source platform for machine learning. Prior to versions 2.12.0 and 2.11.1, there is a heap buffer overflow in TAvgPoolGrad. A fix is included in TensorFlow 2.12.0 and 2.11.1...

7.5CVSS7.4AI score0.0009EPSS

Cvelist•added 2023/03/24 11:40 p.m.•32 views

CVE-2023-25667 TensorFlow vulnerable to segfault when opening multiframe gif

TensorFlow is an open source platform for machine learning. Prior to versions 2.12.0 and 2.11.1, integer overflow occurs when 2^31 = numframes height width channels 2^32, for example Full HD screencast of at least 346 frames. A fix is included in TensorFlow version 2.12.0 and version 2.11.1...

6.5CVSS7.8AI score0.00211EPSS

CVE•added 2023/03/24 11:40 p.m.•233 views

CVE-2023-25667

TensorFlow contains an integer overflow in the vulnerability CVE-2023-25667, affecting versions prior to 2.12.0 and 2.11.1 when 2^31 <= num_frames * height * width * channels

7.5CVSS6.9AI score0.00211EPSS

OSV•added 2023/03/24 11:40 p.m.•28 views

CVE-2023-25667 TensorFlow vulnerable to segfault when opening multiframe gif

6.5CVSS6.4AI score0.00211EPSS

OSV•added 2023/03/24 11:39 p.m.•20 views

CVE-2023-25666 TensorFlow has Floating Point Exception in AudioSpectrogram

TensorFlow is an open source platform for machine learning. Prior to versions 2.12.0 and 2.11.1, there is a floating point exception in AudioSpectrogram. A fix is included in TensorFlow version 2.12.0 and version 2.11.1...

7.5CVSS6.2AI score0.00054EPSS

Cvelist•added 2023/03/24 11:39 p.m.•18 views

CVE-2023-25666 TensorFlow has Floating Point Exception in AudioSpectrogram

7.5CVSS7.7AI score0.00054EPSS

Vulnrichment•added 2023/03/24 11:39 p.m.•7 views

CVE-2023-25666 TensorFlow has Floating Point Exception in AudioSpectrogram

7.5CVSS7.4AI score0.00054EPSS

CVE•added 2023/03/24 11:39 p.m.•194 views

CVE-2023-25666

TensorFlow AudioSpectrogram in versions prior to 2.12.0 and 2.11.1 is affected by a floating point exception that can cause a Denial of Service. The fix is included in TensorFlow 2.12.0 and in 2.11.1. Recommended action: upgrade to TensorFlow 2.12.0 or 2.11.1 (or newer) to remediate.

7.5CVSS7.4AI score0.00054EPSS