Lucene search
Veracode Vulnerability DatabaseVERACODE:34046HistoryFeb 08, 2022 - 5:36 a.m.
Denial Of Service (DoS)
2022-02-0805:36:02
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
tensorflow
vulnerability
savedmodel
denial of service
python interpreter
EPSS
0.002
Percentile
60.9%
Tensorflow is vulnerable to denial of service. An attacker is able to crash the system by altering a SavedModel such that assertions in function.cc would be falsified and crash the Python interpreter.
References
github.com/tensorflow/tensorflow/blob/a1320ec1eac186da1d03f033109191f715b2b130/tensorflow/core/framework/function.cc
github.com/tensorflow/tensorflow/commit/3d89911481ba6ebe8c88c1c0b595412121e6c645
github.com/tensorflow/tensorflow/commit/dcc21c7bc972b10b6fb95c2fb0f4ab5a59680ec2
github.com/tensorflow/tensorflow/security/advisories/GHSA-43jf-985q-588j
Related
osv
osv
Multiple `CHECK`-fails in `function.cc` in TensowFlow
2022-02-09 23:27:08
BIT-tensorflow-2022-23586
2024-03-06 11:14:53
PYSEC-2022-150
2022-02-04 23:15:00
cvelist
cvelist
CVE-2022-23586 Multiple `CHECK`-fails in `function.cc` in Tensorflow
2022-02-04 22:32:19
github
github
Multiple `CHECK`-fails in `function.cc` in TensowFlow
2022-02-09 23:27:08
nvd
nvd
CVE-2022-23586
2022-02-04 23:15:14
prion
prion
Stack overflow
2022-02-04 23:15:00
cnvd
cnvd
Google Tensorflow has an unspecified vulnerability (CNVD-2022-09859)
2022-02-09 00:00:00
cve
cve
CVE-2022-23586
2022-02-04 23:15:14
