Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google tensorflow 2.10 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-36011
TensorFlow is an open source platform for machine learning. When `mlir::tfg::ConvertGenericFunctionToFunctionDef` is given empty function attributes, it gives a null dereference. We have patched the issue in GitHub commit 1cf45b831eeb0cab8655c9c7c5d06ec6f45fc41b. The fix will be ...
Google Tensorflow
Google Tensorflow 2.10
7.5
CVSSv3
CVE-2022-36014
TensorFlow is an open source platform for machine learning. When `mlir::tfg::TFOp::nameAttr` receives null type list attributes, it crashes. We have patched the issue in GitHub commits 3a754740d5414e362512ee981eefba41561a63a6 and a0f0b9a21c9270930457095092f558fbad4c03e5. The fix ...
Google Tensorflow
Google Tensorflow 2.10
7.5
CVSSv3
CVE-2022-36017
TensorFlow is an open source platform for machine learning. If `Requantize` is given `input_min`, `input_max`, `requested_output_min`, `requested_output_max` tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patche...
Google Tensorflow
Google Tensorflow 2.10
7.5
CVSSv3
CVE-2022-35972
TensorFlow is an open source platform for machine learning. If `QuantizedBiasAdd` is given `min_input`, `max_input`, `min_bias`, `max_bias` tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in Git...
Google Tensorflow
Google Tensorflow 2.10
7.5
CVSSv3
CVE-2022-35991
TensorFlow is an open source platform for machine learning. When `TensorListScatter` and `TensorListScatterV2` receive an `element_shape` of a rank greater than one, they give a `CHECK` fail that can trigger a denial of service attack. We have patched the issue in GitHub commit b...
Google Tensorflow
Google Tensorflow 2.10
7.5
CVSSv3
CVE-2022-36004
TensorFlow is an open source platform for machine learning. When `tf.random.gamma` receives large input shape and rates, it gives a `CHECK` fail that can trigger a denial of service attack. We have patched the issue in GitHub commit 552bfced6ce4809db5f3ca305f60ff80dd40c5a3. The f...
Google Tensorflow
Google Tensorflow 2.10
7.5
CVSSv3
CVE-2022-35960
TensorFlow is an open source platform for machine learning. In `core/kernels/list_kernels.cc's TensorListReserve`, `num_elements` is assumed to be a tensor of size 1. When a `num_elements` of more than 1 element is provided, then `tf.raw_ops.TensorListReserve` fails the `CHE...
Google Tensorflow 2.8.0
Google Tensorflow
Google Tensorflow 2.10
Google Tensorflow 2.9.0
7.5
CVSSv3
CVE-2022-35963
TensorFlow is an open source platform for machine learning. The implementation of `FractionalAvgPoolGrad` does not fully validate the input `orig_input_tensor_shape`. This results in an overflow that results in a `CHECK` failure which can be used to trigger a denial of service at...
Google Tensorflow 2.8.0
Google Tensorflow
Google Tensorflow 2.10
Google Tensorflow 2.9.0
7.5
CVSSv3
CVE-2022-35959
TensorFlow is an open source platform for machine learning. The implementation of `AvgPool3DGradOp` does not fully validate the input `orig_input_shape`. This results in an overflow that results in a `CHECK` failure which can be used to trigger a denial of service attack. We have...
Google Tensorflow 2.8.0
Google Tensorflow
Google Tensorflow 2.10
Google Tensorflow 2.9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6