目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1336 CNY

100%
コーヒーを一杯おごる

TensorFlow 厂商漏洞列表 / CVE 中文分析 403

TensorFlow 厂商相关 403 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

TensorFlow 是 Google 开发的开源机器学习框架,广泛用于构建和训练深度学习模型。其历史漏洞多涉及内存安全缺陷、拒绝服务及越权访问,部分源于底层 C++ 组件的缓冲区溢出或逻辑错误。近期关注点在于模型权重泄露及对抗样本攻击风险。尽管核心库安全性较高,但集成环境中的配置失误常导致数据暴露。建议及时更新版本并遵循最小权限原则,以缓解潜在的安全威胁。

上位製品 TensorFlow: tensorflow keras
CVE IDタイトルCVSS深刻度公開日
CVE-2021-29578 Heap buffer overflow in `FractionalAvgPoolGrad` — tensorflowCWE-119 2.5 Low2021-05-14
CVE-2021-29579 Heap buffer overflow in `MaxPoolGrad` — tensorflowCWE-119 2.5 Low2021-05-14
CVE-2021-29580 Undefined behavior and `CHECK`-fail in `FractionalMaxPoolGrad` — tensorflowCWE-908 2.5 Low2021-05-14
CVE-2021-29581 Segfault in `CTCBeamSearchDecoder` — tensorflowCWE-908 2.5 Low2021-05-14
CVE-2021-29582 Heap OOB read in `tf.raw_ops.Dequantize` — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29583 Heap buffer overflow and undefined behavior in `FusedBatchNorm` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29584 CHECK-fail due to integer overflow — tensorflowCWE-190 2.5 Low2021-05-14
CVE-2021-29525 Division by 0 in `Conv2DBackpropInput` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29526 Division by 0 in `Conv2D` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29527 Division by 0 in `QuantizedConv2D` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29528 Division by 0 in `QuantizedMul` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29529 Heap buffer overflow caused by rounding — tensorflowCWE-131 2.5 Low2021-05-14
CVE-2021-29530 Invalid validation in `SparseMatrixSparseCholesky` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29531 CHECK-fail in tf.raw_ops.EncodePng — tensorflowCWE-754 2.5 Low2021-05-14
CVE-2021-29532 Heap out of bounds read in `RaggedCross` — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29533 CHECK-fail in DrawBoundingBoxes — tensorflowCWE-754 2.5 Low2021-05-14
CVE-2021-29534 CHECK-fail in SparseConcat — tensorflowCWE-754 2.5 Low2021-05-14
CVE-2021-29535 Heap buffer overflow in `QuantizedMul` — tensorflowCWE-131 2.5 Low2021-05-14
CVE-2021-29536 Heap buffer overflow in `QuantizedReshape` — tensorflowCWE-131 2.5 Low2021-05-14
CVE-2021-29537 Heap buffer overflow in `QuantizedResizeBilinear` — tensorflowCWE-131 2.5 Low2021-05-14
CVE-2021-29538 Division by zero in `Conv2DBackpropFilter` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29539 Segfault in tf.raw_ops.ImmutableConst — tensorflowCWE-681 2.5 Low2021-05-14
CVE-2021-29540 Heap buffer overflow in `Conv2DBackpropFilter` — tensorflowCWE-120 2.5 Low2021-05-14
CVE-2021-29541 Null pointer dereference in `StringNGrams` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29542 Heap buffer overflow in `StringNGrams` — tensorflowCWE-131 2.5 Low2021-05-14
CVE-2021-29543 CHECK-fail in `CTCGreedyDecoder` — tensorflowCWE-617 2.5 Low2021-05-14
CVE-2021-29544 CHECK-fail in `QuantizeAndDequantizeV4Grad` — tensorflowCWE-754 2.5 Low2021-05-14
CVE-2021-29545 Heap buffer overflow in `SparseTensorToCSRSparseMatrix` — tensorflowCWE-131 2.5 Low2021-05-14
CVE-2021-29546 Division by 0 in `QuantizedBiasAdd` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29547 Heap out of bounds in `QuantizedBatchNormWithGlobalNormalization` — tensorflowCWE-125 2.5 Low2021-05-14

本页汇总了 TensorFlow 厂商截至目前公开的全部 403 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。