EPSS
Percentile
50.2%
Tensorflow is vulnerable to denial of service. The vulnerability exists due to a lack of sanitization of the DCHECK is a no-op in production builds, and an assertion failure in debug builds allowing an attacker to crash the system
DCHECK
github.com/tensorflow/tensorflow/blob/a1320ec1eac186da1d03f033109191f715b2b130/tensorflow/core/framework/shape_inference.cc#L168-L174
github.com/tensorflow/tensorflow/commit/cb164786dc891ea11d3a900e90367c339305dc7b
github.com/tensorflow/tensorflow/security/advisories/GHSA-rww7-2gpw-fv6j