Denial Of Service (DoS)

2022-09-2011:46:52

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

vulnerability

tensorflow

compute function

0.001 Low

EPSS

Percentile

40.3%

JSON

tensorflow is vulnerable to denial of service. The vulnerability exists in Compute function of batch_kernels.cc because the function doesn’t handle nonscalar argument ids which allows an attacker to cause an application crash.

CPENameOperatorVersion
tensorflow-cpule2.9.1
tensorflow-cpule2.8.2
tensorflow-cpule2.7.3
tensorflow-gpule2.9.1
tensorflow-gpule2.8.2
tensorflow-gpule2.7.3
tensorflowle2.9.1
tensorflowle2.8.2
tensorflowle2.7.3
tensorflow-cpule2.9.1

Name	Operator	Version
tensorflow-cpu	le	2.9.1
tensorflow-cpu	le	2.8.2
tensorflow-cpu	le	2.7.3
tensorflow-gpu	le	2.9.1
tensorflow-gpu	le	2.8.2
tensorflow-gpu	le	2.7.3
tensorflow	le	2.9.1
tensorflow	le	2.8.2
tensorflow	le	2.7.3
tensorflow-cpu	le	2.9.1