Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14326 matches found

OSV
OSVadded 2022/02/03 2:15 p.m.19 views

PYSEC-2022-62

Tensorflow is an Open Source Machine Learning Framework. The implementation of SparseCountSparseOutput can be made to crash a TensorFlow process by an integer overflow whose result is then used in a memory allocation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this comm...

6.5CVSS3.8AI score0.00771EPSS
Exploits1References3
OSV
OSVadded 2022/02/03 2:15 p.m.19 views

PYSEC-2022-61

Tensorflow is an Open Source Machine Learning Framework. The implementation of Bincount operations allows malicious users to cause denial of service by passing in arguments which would trigger a CHECK-fail. There are several conditions that the input arguments must satisfy. Some are not caught...

6.5CVSS2.4AI score0.00771EPSS
Exploits1References3
PyPA
PyPAadded 2022/02/03 2:15 p.m.4 views

PYSEC-2022-118

Tensorflow is an Open Source Machine Learning Framework. The implementation of QuantizedMaxPool has an undefined behavior where user controlled inputs can trigger a reference binding to null pointer. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow...

6.5CVSS6.9AI score0.00771EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2022/02/03 2:15 p.m.4 views

PYSEC-2022-118

Tensorflow is an Open Source Machine Learning Framework. The implementation of QuantizedMaxPool has an undefined behavior where user controlled inputs can trigger a reference binding to null pointer. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow...

6.5CVSS5.9AI score0.00771EPSS
Exploits1References3
OSV
OSVadded 2022/02/03 2:15 p.m.17 views

PYSEC-2022-63

Tensorflow is an Open Source Machine Learning Framework. The implementation of QuantizedMaxPool has an undefined behavior where user controlled inputs can trigger a reference binding to null pointer. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow...

6.5CVSS2.3AI score0.00771EPSS
Exploits1References3
OSV
OSVadded 2022/02/03 2:15 p.m.0 views

PYSEC-2022-116

Tensorflow is an Open Source Machine Learning Framework. The implementation of Bincount operations allows malicious users to cause denial of service by passing in arguments which would trigger a CHECK-fail. There are several conditions that the input arguments must satisfy. Some are not caught...

6.5CVSS6.6AI score0.00771EPSS
Exploits1References3
OSV
OSVadded 2022/02/03 2:15 p.m.1 views

PYSEC-2022-117

Tensorflow is an Open Source Machine Learning Framework. The implementation of SparseCountSparseOutput can be made to crash a TensorFlow process by an integer overflow whose result is then used in a memory allocation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this comm...

6.5CVSS5.9AI score0.00771EPSS
Exploits1References3
Cvelist
Cvelistadded 2022/02/03 1:43 p.m.29 views

CVE-2022-21737 Assertion failure based denial of service in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of Bincount operations allows malicious users to cause denial of service by passing in arguments which would trigger a CHECK-fail. There are several conditions that the input arguments must satisfy. Some are not caught...

6.5CVSS6.4AI score0.00771EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2022/02/03 1:43 p.m.6 views

CVE-2022-21737 Assertion failure based denial of service in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of Bincount operations allows malicious users to cause denial of service by passing in arguments which would trigger a CHECK-fail. There are several conditions that the input arguments must satisfy. Some are not caught...

6.5CVSS6.2AI score0.00771EPSS
Exploits1References3
CVE
CVEadded 2022/02/03 1:43 p.m.108 views

CVE-2022-21737

The CVE-2022-21737 issue affects TensorFlow’s bincount path. The vulnerability arises from the implementation of DenseBincount and related *Bincount operations, where certain input argument constraints are not fully enforced during shape inference or kernel execution, leading to CHECK failures du...

6.5CVSS6.2AI score0.00771EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVEadded 2022/02/03 1:43 p.m.2 views

CVE-2022-21737

Tensorflow is an Open Source Machine Learning Framework. The implementation of Bincount operations allows malicious users to cause denial of service by passing in arguments which would trigger a CHECK-fail. There are several conditions that the input arguments must satisfy. Some are not caught...

6.5CVSS6.7AI score0.00771EPSS
Exploits1
OSV
OSVadded 2022/02/03 1:43 p.m.17 views

CVE-2022-21737 Assertion failure based denial of service in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of Bincount operations allows malicious users to cause denial of service by passing in arguments which would trigger a CHECK-fail. There are several conditions that the input arguments must satisfy. Some are not caught...

6.5CVSS6.1AI score0.00771EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2022/02/03 1:19 p.m.4 views

CVE-2022-21738 Integer overflow leading to crash in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of SparseCountSparseOutput can be made to crash a TensorFlow process by an integer overflow whose result is then used in a memory allocation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this comm...

6.5CVSS6.5AI score0.00771EPSS
Exploits1References3
CVE
CVEadded 2022/02/03 1:19 p.m.99 views

CVE-2022-21738

TensorFlow CVE-2022-21738 describes an integer overflow in SparseCountSparseOutput (kernels/count_ops.cc) that can crash a TensorFlow process when its result is used for memory allocation. The vulnerability affects TensorFlow releases including 2.5.3, 2.6.3, and 2.7.1, with a fix planned for Tens...

6.5CVSS6.7AI score0.00771EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2022/02/03 1:19 p.m.40 views

CVE-2022-21738 Integer overflow leading to crash in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of SparseCountSparseOutput can be made to crash a TensorFlow process by an integer overflow whose result is then used in a memory allocation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this comm...

6.5CVSS6.8AI score0.00771EPSS
Exploits1References3
OSV
OSVadded 2022/02/03 1:19 p.m.13 views

CVE-2022-21738 Integer overflow leading to crash in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of SparseCountSparseOutput can be made to crash a TensorFlow process by an integer overflow whose result is then used in a memory allocation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this comm...

6.5CVSS6.5AI score0.00771EPSS
Exploits1References5
Debian CVE
Debian CVEadded 2022/02/03 1:19 p.m.2 views

CVE-2022-21738

Tensorflow is an Open Source Machine Learning Framework. The implementation of SparseCountSparseOutput can be made to crash a TensorFlow process by an integer overflow whose result is then used in a memory allocation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this comm...

6.5CVSS7.2AI score0.00771EPSS
Exploits1
NVD
NVDadded 2022/02/03 1:15 p.m.28 views

CVE-2022-21734

Tensorflow is an Open Source Machine Learning Framework. The implementation of MapStage is vulnerable a CHECK-fail if the key tensor is not a scalar. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as...

6.5CVSS0.00771EPSS
Exploits1References3
NVD
NVDadded 2022/02/03 1:15 p.m.22 views

CVE-2022-21735

Tensorflow is an Open Source Machine Learning Framework. The implementation of FractionalMaxPool can be made to crash a TensorFlow process via a division by 0. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow...

6.5CVSS0.00771EPSS
Exploits1References3
NVD
NVDadded 2022/02/03 1:15 p.m.19 views

CVE-2022-23569

Tensorflow is an Open Source Machine Learning Framework. Multiple operations in TensorFlow can be used to trigger a denial of service via CHECK-fails i.e., assertion failures. This is similar to TFSA-2021-198 and has similar fixes. We have patched the reported issues in multiple GitHub commits. I...

6.5CVSS0.00451EPSS
Exploits0References2
Rows per page
Query Builder