Lucene search
K

81 matches found

OSV
OSV
added 2026/07/07 11:45 a.m.4 views

PYSEC-2026-1964 TensorFlow has Floating Point Exception in AvgPoolGrad with XLA

Impact If the stride and window size are not positive for tf.rawops.AvgPoolGrad, it can give an FPE. python import tensorflow as tf import numpy as np @tf.functionjitcompile=True def test: y = tf.rawops.AvgPoolGradoriginputshape=1,0,0,0, grad=0.39117979, ksize=1,0,0,0, strides=1,0,0,0,...

7.5CVSS6.6AI score0.00391EPSS
Exploits0References6
OSV
OSV
added 2026/07/07 10:17 a.m.4 views

PYSEC-2026-956 TensorFlow has Floating Point Exception in TensorListSplit with XLA

Impact FPE in TensorListSplit with XLA python import tensorflow as tf func = tf.rawops.TensorListSplit para = 'tensor': 1, 'elementshape': -1, 'lengths': 0 @tf.functionjitcompile=True def fuzzjit: y = funcpara return y printfuzzjit Patches We have patched the issue in GitHub commit...

7.5CVSS5.9AI score0.00391EPSS
Exploits0References6
OSV
OSV
added 2026/07/07 10:17 a.m.4 views

PYSEC-2026-999 TensorFlow has Null Pointer Error in RandomShuffle with XLA enable

Impact NPE in RandomShuffle with XLA enable python import tensorflow as tf func = tf.rawops.RandomShuffle para = 'value': 1e+20, 'seed': -4294967297, 'seed2': -2147483649 @tf.functionjitcompile=True def test: y = funcpara return y test Patches We have patched the issue in GitHub commit...

7.5CVSS6.6AI score0.00391EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/01/09 9:14 a.m.9 views

CVE-2022-23595

Tensorflow is an Open Source Machine Learning Framework. When building an XLA compilation cache, if default settings are used, TensorFlow triggers a null pointer dereference. In the default scenario, all devices are allowed, so flr-configproto is nullptr. The fix will be included in TensorFlow...

6.5CVSS6.8AI score0.00774EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.6 views

CVE-2023-25673

TensorFlow is an open source platform for machine learning. Versions prior to 2.12.0 and 2.11.1 have a Floating Point Exception in TensorListSplit with XLA. A fix is included in TensorFlow version 2.12.0 and version 2.11.1...

7.5CVSS6.7AI score0.00391EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-0287

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00774EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-0892

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.00391EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-0933

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.00391EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-0913

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.00391EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-1012

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.00391EPSS
Exploits0References4
Snyk
Snyk
added 2025/09/25 3:43 p.m.3 views

Incorrect Calculation

Overview tensorflow is a machine learning framework. Affected versions of this package are vulnerable to Incorrect Calculation via the Embedding operator that always outputs 0 without XLA when inputdim=1 is set. An attacker can cause the application to produce unpredictable or incorrect outputs b...

6.5CVSS5.8AI score0.00161EPSS
Exploits1References2
Microsoft KB
Microsoft KB
added 2025/07/01 12:0 a.m.8 views

July 1, 2025, update for Office 2016 (KB5002733)

None None...

6.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 6:9 a.m.5 views

CVE-2023-25675

TensorFlow is an open source machine learning platform. When running versions prior to 2.12.0 and 2.11.1 with XLA, tf.rawops.Bincount segfaults when given a parameter weights that is neither the same shape as parameter arr nor a length-0 tensor. A fix is included in TensorFlow 2.12.0 and 2.11.1...

7.5CVSS6.8AI score0.00391EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 11:14 a.m.13 views

BIT-TENSORFLOW-2022-23595 Null pointer dereference in TensorFlow

Tensorflow is an Open Source Machine Learning Framework. When building an XLA compilation cache, if default settings are used, TensorFlow triggers a null pointer dereference. In the default scenario, all devices are allowed, so flr-configproto is nullptr. The fix will be included in TensorFlow...

6.5CVSS5.9AI score0.00774EPSS
Exploits1References4
OSV
OSV
added 2024/03/06 11:7 a.m.16 views

BIT-TENSORFLOW-2023-25675 TensorFlow has Segfault in Bincount with XLA

TensorFlow is an open source machine learning platform. When running versions prior to 2.12.0 and 2.11.1 with XLA, tf.rawops.Bincount segfaults when given a parameter weights that is neither the same shape as parameter arr nor a length-0 tensor. A fix is included in TensorFlow 2.12.0 and 2.11.1...

7.5CVSS7.3AI score0.00391EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:7 a.m.30 views

BIT-TENSORFLOW-2023-25676 TensorFlow has null dereference on ParallelConcat with XLA

TensorFlow is an open source machine learning platform. When running versions prior to 2.12.0 and 2.11.1 with XLA, tf.rawops.ParallelConcat segfaults with a nullptr dereference when given a parameter shape with rank that is not greater than zero. A fix is available in TensorFlow 2.12.0 and 2.11.1...

7.5CVSS7.3AI score0.00391EPSS
Exploits0References3
Veracode
Veracode
added 2023/03/31 1:58 a.m.30 views

Denial Of Service (DoS)

TensorFlow is vulnerable to Denial Of Service DoS. The vulnerability exists due to the improper validation checks in the library, which leads to a segmentation fault with a null pointer dereference in ParallelConcat with XLA, allowing an attacker to cause an application crash when the given...

7.5CVSS7.1AI score0.00391EPSS
Exploits0References3Affected Software3
Veracode
Veracode
added 2023/03/30 7:16 a.m.30 views

Denial Of Service (DoS)

tensorflow is vulnerable to Denial of Service DoS attacks. The vulnerability exists due to bincountop when XLA is enabled, which allows an attacker to cause a segmentation fault when given a parameter weights that is neither the same shape as parameter arr nor a length-0 tensor, causing the...

7.5CVSS7.1AI score0.00391EPSS
Exploits0References4Affected Software3
Veracode
Veracode
added 2023/03/30 6:43 a.m.21 views

Denial Of Service (DoS)

tensorflow is vulnerable to Denial of Service DoS attacks.The vulnerability is due to a null pointer exception in RandomShuffle when XLA is enabled and an input is negative, causing the application to crash...

7.5CVSS7.2AI score0.00391EPSS
Exploits0References5Affected Software3
SUSE CVE
SUSE CVE
added 2023/03/28 1:50 a.m.4 views

SUSE CVE-2023-25673

TensorFlow is an open source platform for machine learning. Versions prior to 2.12.0 and 2.11.1 have a Floating Point Exception in TensorListSplit with XLA. A fix is included in TensorFlow version 2.12.0 and version 2.11.1...

7.5CVSS6.9AI score0.00391EPSS
Exploits0References3
Rows per page
Query Builder