Lucene search
Veracode Vulnerability DatabaseVERACODE:39993HistoryMar 30, 2023 - 8:56 a.m.
Denial Of Service (DoS)
2023-03-3008:56:42
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
denial of service
tensorflow
vulnerability
spectrogramshapefn
floating point exception
application crash
EPSS
0.001
Percentile
37.9%
tensorflow is vulnerable to Denial of Service (DoS) attacks. The vulnerability is due to a floating point exception in SpectrogramShapeFn when the window size is < 1 or the stride is negative resulting in an application crash.
References
github.com/advisories/GHSA-f637-vh3r-vfh2
github.com/tensorflow/tensorflow/commit/d0d4e779da0d0f56499c6fa5ba09f0a576cc6b14
github.com/tensorflow/tensorflow/commit/d7f4cdce9cae94f7df5729e7fe35617fc7f91bc8
github.com/tensorflow/tensorflow/pull/59427
github.com/tensorflow/tensorflow/security/advisories/GHSA-f637-vh3r-vfh2
Related
osv
osv
CVE-2023-25666
2023-03-25 00:15:07
TensorFlow has Floating Point Exception in AudioSpectrogram
2023-03-24 21:57:18
BIT-tensorflow-2023-25666
2024-03-06 11:08:49
cvelist
cvelist
CVE-2023-25666 TensorFlow has Floating Point Exception in AudioSpectrogram
2023-03-24 23:39:55
ibm
ibm
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow (CVE-2023-25666)
2023-06-28 20:03:24
github
github
TensorFlow has Floating Point Exception in AudioSpectrogram
2023-03-24 21:57:18
nvd
nvd
CVE-2023-25666
2023-03-25 00:15:07
cve
cve
CVE-2023-25666
2023-03-25 00:15:07
cbl_mariner
cbl_mariner
CVE-2023-25666 affecting package tensorflow for versions less than 2.11.1-1
2024-09-29 09:20:52
prion
prion
Stack overflow
2023-03-25 00:15:00
nessus
nessus
TensorFlow < 2.11.1 Multiple Vulnerabilities
2024-05-20 00:00:00
TensorFlow < 2.12.0 Multiple Vulnerabilities
2024-05-31 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00