cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score CVE-2022-21740,https://securityvulnerability.io/vulnerability/CVE-2022-21740,Heap overflow in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `SparseCountSparseOutput` is vulnerable to a heap overflow. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,7.6,HIGH,0.0030400000978261232,false,false,false,false,,false,false,2022-02-03T14:30:47.000Z,0 CVE-2022-21741,https://securityvulnerability.io/vulnerability/CVE-2022-21741,Division by zero in TFLite,"Tensorflow is an Open Source Machine Learning Framework. ### Impact An attacker can craft a TFLite model that would trigger a division by zero in the implementation of depthwise convolutions. The parameters of the convolution can be user controlled and are also used within a division operation to determine the size of the padding that needs to be added before applying the convolution. There is no check before this division that the divisor is strictly positive. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.0014900000533089042,false,false,false,false,,false,false,2022-02-03T14:27:31.000Z,0 CVE-2022-21737,https://securityvulnerability.io/vulnerability/CVE-2022-21737,Assertion failure based denial of service in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `*Bincount` operations allows malicious users to cause denial of service by passing in arguments which would trigger a `CHECK`-fail. There are several conditions that the input arguments must satisfy. Some are not caught during shape inference and others are not caught during kernel implementation. This results in `CHECK` failures later when the output tensors get allocated. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.0012000000569969416,false,false,false,false,,false,false,2022-02-03T13:43:21.000Z,0 CVE-2022-21738,https://securityvulnerability.io/vulnerability/CVE-2022-21738,Integer overflow leading to crash in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `SparseCountSparseOutput` can be made to crash a TensorFlow process by an integer overflow whose result is then used in a memory allocation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.0014900000533089042,false,false,false,false,,false,false,2022-02-03T13:19:05.000Z,0 CVE-2022-21739,https://securityvulnerability.io/vulnerability/CVE-2022-21739,Null pointer dereference in TensorFlow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `QuantizedMaxPool` has an undefined behavior where user controlled inputs can trigger a reference binding to null pointer. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.0014900000533089042,false,false,false,false,,false,false,2022-02-03T13:13:52.000Z,0 CVE-2022-21734,https://securityvulnerability.io/vulnerability/CVE-2022-21734,`CHECK`-failures in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `MapStage` is vulnerable a `CHECK`-fail if the key tensor is not a scalar. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.0014900000533089042,false,false,false,false,,false,false,2022-02-03T12:59:18.000Z,0 CVE-2022-21735,https://securityvulnerability.io/vulnerability/CVE-2022-21735,Division by zero in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `FractionalMaxPool` can be made to crash a TensorFlow process via a division by 0. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.0014900000533089042,false,false,false,false,,false,false,2022-02-03T12:53:48.000Z,0 CVE-2022-23569,https://securityvulnerability.io/vulnerability/CVE-2022-23569,`CHECK`-fails when building invalid tensor shapes in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. Multiple operations in TensorFlow can be used to trigger a denial of service via `CHECK`-fails (i.e., assertion failures). This is similar to TFSA-2021-198 and has similar fixes. We have patched the reported issues in multiple GitHub commits. It is possible that other similar instances exist in TensorFlow, we will issue fixes as these are discovered. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.0007600000244565308,false,false,false,false,,false,false,2022-02-03T12:47:29.000Z,0 CVE-2022-21729,https://securityvulnerability.io/vulnerability/CVE-2022-21729,Overflow and uncaught divide by zero in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `UnravelIndex` is vulnerable to a division by zero caused by an integer overflow bug. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.0014900000533089042,false,false,false,false,,false,false,2022-02-03T12:28:25.000Z,0 CVE-2022-21725,https://securityvulnerability.io/vulnerability/CVE-2022-21725,Division by zero in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The estimator for the cost of some convolution operations can be made to execute a division by 0. The function fails to check that the stride argument is strictly positive. Hence, the fix is to add a check for the stride argument to ensure it is valid. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.0014900000533089042,false,false,false,false,,false,false,2022-02-03T12:21:02.000Z,0 CVE-2022-21736,https://securityvulnerability.io/vulnerability/CVE-2022-21736,Undefined behavior in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `SparseTensorSliceDataset` has an undefined behavior: under certain condition it can be made to dereference a `nullptr` value. The 3 input arguments to `SparseTensorSliceDataset` represent a sparse tensor. However, there are some preconditions that these arguments must satisfy but these are not validated in the implementation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,7.6,HIGH,0.0014900000533089042,false,false,false,false,,false,false,2022-02-03T12:08:03.000Z,0 CVE-2022-23567,https://securityvulnerability.io/vulnerability/CVE-2022-23567,Integer overflows in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementations of `Sparse*Cwise*` ops are vulnerable to integer overflows. These can be used to trigger large allocations (so, OOM based denial of service) or `CHECK`-fails when building new `TensorShape` objects (so, assert failures based denial of service). We are missing some validation on the shapes of the input tensors as well as directly constructing a large `TensorShape` with user-provided dimensions. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.002580000087618828,false,false,false,false,,false,false,2022-02-03T11:52:48.000Z,0 CVE-2022-23568,https://securityvulnerability.io/vulnerability/CVE-2022-23568,Integer overflows in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `AddManySparseToTensorsMap` is vulnerable to an integer overflow which results in a `CHECK`-fail when building new `TensorShape` objects (so, an assert failure based denial of service). We are missing some validation on the shapes of the input tensors as well as directly constructing a large `TensorShape` with user-provided dimensions. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.00171999994199723,false,false,false,false,,false,false,2022-02-03T11:42:54.000Z,0 CVE-2022-21731,https://securityvulnerability.io/vulnerability/CVE-2022-21731,Type confusion leading to segfault in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `ConcatV2` can be used to trigger a denial of service attack via a segfault caused by a type confusion. The `axis` argument is translated into `concat_dim` in the `ConcatShapeHelper` helper function. Then, a value for `min_rank` is computed based on `concat_dim`. This is then used to validate that the `values` tensor has at least the required rank. However, `WithRankAtLeast` receives the lower bound as a 64-bits value and then compares it against the maximum 32-bits integer value that could be represented. Due to the fact that `min_rank` is a 32-bits value and the value of `axis`, the `rank` argument is a negative value, so the error check is bypassed. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,6.5,MEDIUM,0.0018100000452250242,false,false,false,false,,false,false,2022-02-03T11:37:56.000Z,0 CVE-2022-21733,https://securityvulnerability.io/vulnerability/CVE-2022-21733,Memory exhaustion in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `StringNGrams` can be used to trigger a denial of service attack by causing an out of memory condition after an integer overflow. We are missing a validation on `pad_witdh` and that result in computing a negative value for `ngram_width` which is later used to allocate parts of the output. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,4.3,MEDIUM,0.0012000000569969416,false,false,false,false,,false,false,2022-02-03T11:28:10.000Z,0 CVE-2022-21732,https://securityvulnerability.io/vulnerability/CVE-2022-21732,Memory exhaustion in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `ThreadPoolHandle` can be used to trigger a denial of service attack by allocating too much memory. This is because the `num_threads` argument is only checked to not be negative, but there is no upper bound on its value. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,4.3,MEDIUM,0.0017000000225380063,false,false,false,false,,false,false,2022-02-03T11:21:48.000Z,0 CVE-2022-21727,https://securityvulnerability.io/vulnerability/CVE-2022-21727,Integer overflow in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `Dequantize` is vulnerable to an integer overflow weakness. The `axis` argument can be `-1` (the default value for the optional argument) or any other positive value at most the number of dimensions of the input. Unfortunately, the upper bound is not checked, and, since the code computes `axis + 1`, an attacker can trigger an integer overflow. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,7.6,HIGH,0.0028899998869746923,false,false,false,false,,false,false,2022-02-03T11:07:40.000Z,0 CVE-2022-21726,https://securityvulnerability.io/vulnerability/CVE-2022-21726,Out of bounds read in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `Dequantize` does not fully validate the value of `axis` and can result in heap OOB accesses. The `axis` argument can be `-1` (the default value for the optional argument) or any other positive value at most the number of dimensions of the input. Unfortunately, the upper bound is not checked and this results in reading past the end of the array containing the dimensions of the input tensor. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,8.1,HIGH,0.004110000096261501,false,false,false,false,,false,false,2022-02-03T11:01:42.000Z,0 CVE-2022-21728,https://securityvulnerability.io/vulnerability/CVE-2022-21728,Out of bounds read in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `ReverseSequence` does not fully validate the value of `batch_dim` and can result in a heap OOB read. There is a check to make sure the value of `batch_dim` does not go over the rank of the input, but there is no check for negative values. Negative dimensions are allowed in some cases to mimic Python's negative indexing (i.e., indexing from the end of the array), however if the value is too negative then the implementation of `Dim` would access elements before the start of an array. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,8.1,HIGH,0.0027600000612437725,false,false,false,true,true,false,false,2022-02-03T10:55:55.000Z,0 CVE-2022-21730,https://securityvulnerability.io/vulnerability/CVE-2022-21730,Out of bounds read in Tensorflow,"Tensorflow is an Open Source Machine Learning Framework. The implementation of `FractionalAvgPoolGrad` does not consider cases where the input tensors are invalid allowing an attacker to read from outside of bounds of heap. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.",Google,Tensorflow,8.1,HIGH,0.0028899998869746923,false,false,false,false,,false,false,2022-02-03T10:48:29.000Z,0 CVE-2021-35958,https://securityvulnerability.io/vulnerability/CVE-2021-35958,,TensorFlow through 2.5.0 allows attackers to overwrite arbitrary files via a crafted archive when tf.keras.utils.get_file is used with extract=True. NOTE: the vendor's position is that tf.keras.utils.get_file is not intended for untrusted archives,Google,Tensorflow,9.1,CRITICAL,0.0026100000832229853,false,false,false,false,,false,false,2021-06-30T00:12:53.000Z,0 CVE-2018-21233,https://securityvulnerability.io/vulnerability/CVE-2018-21233,,"TensorFlow before 1.7.0 has an integer overflow that causes an out-of-bounds read, possibly causing disclosure of the contents of process memory. This occurs in the DecodeBmp feature of the BMP decoder in core/kernels/decode_bmp_op.cc.",Google,Tensorflow,6.5,MEDIUM,0.0008500000112690032,false,false,false,false,,false,false,2020-05-04T14:12:19.000Z,0 CVE-2018-7575,https://securityvulnerability.io/vulnerability/CVE-2018-7575,,Google TensorFlow 1.7.x and earlier is affected by a Buffer Overflow vulnerability. The type of exploitation is context-dependent.,Google,Tensorflow,9.8,CRITICAL,0.001339999958872795,false,false,false,false,,false,false,2019-04-24T20:44:16.000Z,0 CVE-2019-9635,https://securityvulnerability.io/vulnerability/CVE-2019-9635,,NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file.,Google,Tensorflow,6.5,MEDIUM,0.0008099999977275729,false,false,false,false,,false,false,2019-04-24T16:30:31.000Z,0 CVE-2018-10055,https://securityvulnerability.io/vulnerability/CVE-2018-10055,,Invalid memory access and/or a heap buffer overflow in the TensorFlow XLA compiler in Google TensorFlow before 1.7.1 could cause a crash or read from other parts of process memory via a crafted configuration file.,Google,Tensorflow,8.1,HIGH,0.0012700000079348683,false,false,false,false,,false,false,2019-04-24T16:17:53.000Z,0