Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:40008
HistoryMar 31, 2023 - 5:59 a.m.

Double Free

2023-03-3105:59:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
19
tensorflow
double free
attack
vulnerability
nn_ops
fractional_avg_pool_v2
fractional_max_pool_v2
denial of service
execution flow

EPSS

0

Percentile

9.0%

JSON

tensorflow is vulnerable to a Double Free attack. The vulnerability occurs when when the first and the fourth elements of the pooling_ratio function has parameters not equal to 1.0 in nn_ops.fractional_avg_pool_v2 and nn_ops.fractional_max_pool_v2 because pooling on batch and channel dimensions is not supported. An attacker can cause a Denial of Service or possibly alter the execution flow.

Related

ibm 6
nvd 1
cbl_mariner 1
osv 3
cvelist 1
prion 1
cve 1
github 1
nessus 2
oracle 1
ibm
ibm
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to an arbitrary code execution in TensorFlow (CVE-2023-25801)
2023-06-28 20:06:13
Security Bulletin:Tensorflow, which is vulnerable to multiple security CVEs, is used in IBM Maximo Application Suite - Monitor Component
2024-05-06 16:52:39
Security Bulletin: Multiple Vulnerabilities affecting IBM Watson Studio in Cloud Pak for Data Are Addressed
2023-12-08 11:04:37
nvd
nvd
CVE-2023-25801
2023-03-25 00:15:08
cbl_mariner
cbl_mariner
CVE-2023-25801 affecting package tensorflow for versions less than 2.11.1-1
2024-09-29 09:20:52
osv
osv
CVE-2023-25801
2023-03-25 00:15:08
BIT-tensorflow-2023-25801
2024-03-06 11:07:03
TensorFlow has double free in Fractional(Max/Avg)Pool
2023-03-24 21:53:49
cvelist
cvelist
CVE-2023-25801 TensorFlow has double free in Fractional(Max/Avg)Pool
2023-03-24 23:08:50
prion
prion
Stack overflow
2023-03-25 00:15:00
cve
cve
CVE-2023-25801
2023-03-25 00:15:08
github
github
TensorFlow has double free in Fractional(Max/Avg)Pool
2023-03-24 21:53:49
nessus
nessus
TensorFlow < 2.11.1 Multiple Vulnerabilities
2024-05-20 00:00:00
TensorFlow < 2.12.0 Multiple Vulnerabilities
2024-05-31 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00

EPSS

0

Percentile

9.0%

JSON
Related for VERACODE:40008
ibm6nvd1cbl_mariner1osv3cvelist1prion1cve1github1nessus2oracle1