Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

tensorflow — Vulnerabilities & Security Advisories 404

All 404 CVE vulnerabilities found in tensorflow, with AI-generated Chinese analysis, references, and POCs.

Vendor: tensorflow

CVE IDTitleCVSSSeverityPublished
CVE-2021-37656 Reference binding to nullptr in `RaggedTensorToSparse` in TensorFlow CWE-824 7.1 High2021-08-12
CVE-2021-37657 Reference binding to nullptr in `MatrixDiagV*` ops in TensorFlow CWE-824 7.1 High2021-08-12
CVE-2021-37658 Reference binding to nullptr in `MatrixSetDiagV*` ops in TensorFlow CWE-824 7.1 High2021-08-12
CVE-2021-37644 `std::abort` raised from `TensorListReserve` in TensorFlow CWE-617 5.5 Medium2021-08-12
CVE-2021-37654 Heap OOB and CHECK fail in `ResourceGather` in TensorFlow CWE-125 7.3 High2021-08-12
CVE-2021-37641 Heap OOB in `RaggedGather` in TensorFlow CWE-125 7.3 High2021-08-12
CVE-2021-37635 Heap out of bounds access in sparse reduction operations in TensorFlow CWE-125 7.3 High2021-08-12
CVE-2021-37664 Heap OOB in boosted trees in TensorFlow CWE-125 7.3 High2021-08-12
CVE-2021-37659 Out of bounds read via null pointer dereference in TensorFlow CWE-476 7.3 High2021-08-12
CVE-2021-37655 Heap OOB in `ResourceScatterUpdate` in TensorFlow CWE-125 7.3 High2021-08-12
CVE-2021-37637 Null pointer dereference in `CompressElement` in TensorFlow CWE-476 7.7 High2021-08-12
CVE-2021-37649 Null pointer dereference in `UncompressElement` in TensorFlow CWE-476 7.7 High2021-08-12
CVE-2021-37647 Null pointer dereference in `SparseTensorSliceDataset` in TensorFlow CWE-476 7.7 High2021-08-12
CVE-2021-37643 Null pointer dereference in `MatrixDiagPartOp` in TensorFlow CWE-476 7.7 High2021-08-12
CVE-2021-37639 Null pointer dereference and heap OOB read in TensorFlow CWE-476 8.4 High2021-08-12
CVE-2021-37638 Null pointer dereference in `RaggedTensorToTensor` in TensorFlow CWE-476 7.7 High2021-08-12
CVE-2021-37660 Division by 0 in inplace operations in TensorFlow CWE-369 5.5 Medium2021-08-12
CVE-2021-37653 Division by 0 in `ResourceGather` in TensorFlow CWE-369 5.5 Medium2021-08-12
CVE-2021-37642 Division by 0 in `ResourceScatterDiv` in TensorFlow CWE-369 5.5 Medium2021-08-12
CVE-2021-37640 Integer division by 0 in sparse reshaping in TensorFlow CWE-369 5.5 Medium2021-08-12
CVE-2021-37636 Floating point exception in `SparseDenseCwiseDiv` in TensorFlow CWE-369 5.5 Medium2021-08-12
CVE-2021-29513 Type confusion during tensor casts lead to dereferencing null pointers CWE-476 2.5 Low2021-05-14
CVE-2021-29514 Heap out of bounds write in `RaggedBinCount` CWE-787 2.5 Low2021-05-14
CVE-2021-29515 Reference binding to null pointer in `MatrixDiag*` ops CWE-476 2.5 Low2021-05-14
CVE-2021-29516 Null pointer dereference via invalid Ragged Tensors CWE-476 2.5 Low2021-05-14
CVE-2021-29517 Division by zero in `Conv3D` CWE-369 2.5 Low2021-05-14
CVE-2021-29518 Session operations in eager mode lead to null pointer dereferences CWE-476 2.5 Low2021-05-14
CVE-2021-29519 CHECK-fail in SparseCross due to type confusion CWE-843 2.5 Low2021-05-14
CVE-2021-29520 Heap buffer overflow in `Conv3DBackprop*` CWE-120 2.5 Low2021-05-14
CVE-2021-29521 Segfault in SparseCountSparseOutput CWE-131 2.5 Low2021-05-14

All 404 known CVE vulnerabilities affecting tensorflow with full Chinese analysis, references, and POCs where available.