Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21 matches found

Microsoft CVE
Microsoft CVEadded 2024/06/30 2:0 p.m.1 views

TensorFlow has segmentation fault in tfg-translate

...

7.5CVSS6.3AI score0.00318EPSS
Exploits0
OSV
OSVadded 2024/03/06 11:14 a.m.19 views

BIT-TENSORFLOW-2022-23594 Out of bounds read in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The TFG dialect of TensorFlow MLIR makes several assumptions about the incoming GraphDef before converting it to the MLIR-based dialect. If an attacker changes the SavedModel format on disk to invalidate these assumptions and the GraphDef i...

8.8CVSS6.9AI score0.00018EPSS
Exploits0References3
OSV
OSVadded 2024/03/06 11:12 a.m.10 views

BIT-TENSORFLOW-2022-36000 Null dereference on MLIR on empty function attributes in TensorFlow

TensorFlow is an open source platform for machine learning. When mlir::tfg::ConvertGenericFunctionToFunctionDef is given empty function attributes, it gives a null dereference. We have patched the issue in GitHub commit aed36912609fc07229b4d0a7b44f3f48efc00fd0. The fix will be included in...

7.5CVSS6.5AI score0.00075EPSS
Exploits0References3
OSV
OSVadded 2023/03/24 9:55 p.m.1 views

GHSA-J5W9-HMFH-4CR6 TensorFlow has segmentation fault in tfg-translate

Impact Out-of-bounds access due to mismatched integer type sizes in ValueMap::Manager::GetValueOrCreatePlaceholder. Bug with tfg-translate call to InitMlir. The problem happens with generic functions, as it is already handled for non-generic functions. This is because they, unlike non-generic...

7.5CVSS5.7AI score0.00318EPSS
Exploits0References5
Github Security Blog
Github Security Blogadded 2023/03/24 9:55 p.m.19 views

TensorFlow has segmentation fault in tfg-translate

Impact Out-of-bounds access due to mismatched integer type sizes in ValueMap::Manager::GetValueOrCreatePlaceholder. Bug with tfg-translate call to InitMlir. The problem happens with generic functions, as it is already handled for non-generic functions. This is because they, unlike non-generic...

7.5CVSS7.2AI score0.00318EPSS
Exploits0References5Affected Software2
CNVD
CNVDadded 2022/09/20 12:0 a.m.16 views

Google TensorFlow code issue vulnerability (CNVD-2023-10610)

Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google TensorFlow suffers from a code issue vulnerability that stems from when "mlir::tfg::GraphDefImporter:: ConvertNodeDef" attempts to convert a nodedef with an unoperated name, it crashes, and an...

7.5CVSS3.8AI score0.00222EPSS
Exploits0References1
NVD
NVDadded 2022/09/16 11:15 p.m.16 views

CVE-2022-36014

TensorFlow is an open source platform for machine learning. When mlir::tfg::TFOp::nameAttr receives null type list attributes, it crashes. We have patched the issue in GitHub commits 3a754740d5414e362512ee981eefba41561a63a6 and a0f0b9a21c9270930457095092f558fbad4c03e5. The fix will be included in...

7.5CVSS0.00333EPSS
Exploits0References4
NVD
NVDadded 2022/09/16 11:15 p.m.12 views

CVE-2022-36012

TensorFlow is an open source platform for machine learning. When mlir::tfg::ConvertGenericFunctionToFunctionDef is given empty function attributes, it crashes. We have patched the issue in GitHub commit ad069af92392efee1418c48ff561fd3070a03d7b. The fix will be included in TensorFlow 2.10.0. We wi...

7.5CVSS0.00191EPSS
Exploits0References3
NVD
NVDadded 2022/09/16 11:15 p.m.10 views

CVE-2022-36011

TensorFlow is an open source platform for machine learning. When mlir::tfg::ConvertGenericFunctionToFunctionDef is given empty function attributes, it gives a null dereference. We have patched the issue in GitHub commit 1cf45b831eeb0cab8655c9c7c5d06ec6f45fc41b. The fix will be included in...

7.5CVSS0.00075EPSS
Exploits0References2
Prion
Prionadded 2022/09/16 11:15 p.m.20 views

Stack overflow

TensorFlow is an open source platform for machine learning. When mlir::tfg::ConvertGenericFunctionToFunctionDef is given empty function attributes, it gives a null dereference. We have patched the issue in GitHub commit 1cf45b831eeb0cab8655c9c7c5d06ec6f45fc41b. The fix will be included in...

5CVSS7.7AI score0.00075EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2022/09/16 11:15 p.m.16 views

Stack overflow

TensorFlow is an open source platform for machine learning. When mlir::tfg::ConvertGenericFunctionToFunctionDef is given empty function attributes, it gives a null dereference. We have patched the issue in GitHub commit aed36912609fc07229b4d0a7b44f3f48efc00fd0. The fix will be included in...

5CVSS7.7AI score0.00075EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/09/16 10:55 p.m.75 views

CVE-2022-36012

TensorFlow vulnerability CVE-2022-36012: when mlir::tfg::ConvertGenericFunctionToFunctionDef processes empty function attributes, TensorFlow crashes. A patch (commit ad069af92392efee1418c48ff561fd3070a03d7b) fixes the issue and will be included in TensorFlow 2.10.0, with cherry-picks to 2.9.1, 2....

7.5CVSS6.5AI score0.00191EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2022/09/16 10:35 p.m.15 views

CVE-2022-36014 Null-dereference in `mlir::tfg::TFOp::nameAttr` in TensorFlow

TensorFlow is an open source platform for machine learning. When mlir::tfg::TFOp::nameAttr receives null type list attributes, it crashes. We have patched the issue in GitHub commits 3a754740d5414e362512ee981eefba41561a63a6 and a0f0b9a21c9270930457095092f558fbad4c03e5. The fix will be included in...

5.9CVSS7.8AI score0.00333EPSS
Exploits0References4
CVE
CVEadded 2022/09/16 10:30 p.m.84 views

CVE-2022-36011

CVE-2022-36011 affects TensorFlow: a null dereference when mlir::tfg::ConvertGenericFunctionToFunctionDef is given empty function attributes. Root cause: empty attributes lead to a null dereference in MLIR/TFG import. Remediation per sources: fix landed in TensorFlow 2.10.0 and will be cherry-pic...

7.5CVSS6.5AI score0.00075EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2022/09/16 10:30 p.m.18 views

CVE-2022-36013 Null-dereference in `mlir::tfg::GraphDefImporter::ConvertNodeDef` in TensorFlow

TensorFlow is an open source platform for machine learning. When mlir::tfg::GraphDefImporter::ConvertNodeDef tries to convert NodeDefs without an op name, it crashes. We have patched the issue in GitHub commit a0f0b9a21c9270930457095092f558fbad4c03e5. The fix will be included in TensorFlow 2.10.0...

5.9CVSS7.7AI score0.00222EPSS
Exploits0References5
Cvelist
Cvelistadded 2022/09/16 10:30 p.m.21 views

CVE-2022-36013 Null-dereference in `mlir::tfg::GraphDefImporter::ConvertNodeDef` in TensorFlow

TensorFlow is an open source platform for machine learning. When mlir::tfg::GraphDefImporter::ConvertNodeDef tries to convert NodeDefs without an op name, it crashes. We have patched the issue in GitHub commit a0f0b9a21c9270930457095092f558fbad4c03e5. The fix will be included in TensorFlow 2.10.0...

5.9CVSS7.7AI score0.00222EPSS
Exploits0References3
CVE
CVEadded 2022/09/16 10:30 p.m.81 views

CVE-2022-36013

TensorFlow CVE-2022-36013 describes a null-dereference crash in mlir::tfg::GraphDefImporter::ConvertNodeDef when converting NodeDefs without an op name. A fix is present in commit a0f0b9a21c9270930457095092f558fbad4c03e5 and will be included in TensorFlow 2.10.0; the patch will also beCherry-pick...

7.5CVSS6.5AI score0.00222EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blogadded 2022/02/09 11:32 p.m.36 views

Out of bounds read in Tensorflow

Impact The TFG dialect of TensorFlow MLIR makes several assumptions about the incoming GraphDef before converting it to the MLIR-based dialect. If an attacker changes the SavedModel format on disk to invalidate these assumptions and the GraphDef is then converted to MLIR-based IR then they can...

8.8CVSS1.5AI score0.00018EPSS
Exploits0References4Affected Software3
NVD
NVDadded 2022/02/04 11:15 p.m.14 views

CVE-2022-23594

Tensorflow is an Open Source Machine Learning Framework. The TFG dialect of TensorFlow MLIR makes several assumptions about the incoming GraphDef before converting it to the MLIR-based dialect. If an attacker changes the SavedModel format on disk to invalidate these assumptions and the GraphDef i...

8.8CVSS0.00018EPSS
Exploits0References2
OSV
OSVadded 2022/02/04 10:32 p.m.15 views

CVE-2022-23594 Out of bounds read in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The TFG dialect of TensorFlow MLIR makes several assumptions about the incoming GraphDef before converting it to the MLIR-based dialect. If an attacker changes the SavedModel format on disk to invalidate these assumptions and the GraphDef i...

8.8CVSS6.6AI score0.00018EPSS
Exploits0References4
Rows per page
Query Builder