Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

TensorFlow — Vulnerabilities & Security Advisories 403

Browse all 403 CVE security advisories affecting TensorFlow. AI-powered Chinese analysis, POCs, and references for each vulnerability.

TensorFlow is an open-source machine learning framework primarily used for developing and deploying data flow graphs across various platforms. With 403 recorded Common Vulnerabilities and Exposures (CVEs), it has historically been susceptible to a wide array of security flaws. These incidents frequently involve remote code execution, buffer overflows, and denial-of-service conditions, often stemming from improper input validation or memory management errors within its C++ backend. While cross-site scripting is less common due to its backend nature, privilege escalation risks exist when the framework runs with elevated system permissions. Notable security characteristics include its complex dependency tree, which can introduce indirect vulnerabilities through third-party libraries. Major incidents have largely focused on exploitation of parsing routines and model serialization processes, highlighting the critical need for rigorous patch management and secure configuration practices in production environments to mitigate these persistent risks.

Found 402 results / 403Clear Filters
Top products by TensorFlow: tensorflow keras
CVE IDTitleCVSSSeverityPublished
CVE-2021-29609 Incomplete validation in `SparseAdd` — tensorflowCWE-665 5.3 Medium2021-05-14
CVE-2021-29610 Invalid validation in `QuantizeAndDequantizeV2` — tensorflowCWE-665 3.6 Low2021-05-14
CVE-2021-29611 Incomplete validation in `SparseReshape` — tensorflowCWE-665 3.6 Low2021-05-14
CVE-2021-29612 Heap buffer overflow in `BandedTriangularSolve` — tensorflowCWE-120 3.6 Low2021-05-14
CVE-2021-29613 Incomplete validation in `tf.raw_ops.CTCLoss` — tensorflowCWE-665 6.3 Medium2021-05-14
CVE-2021-29614 Interpreter crash from `tf.io.decode_raw` — tensorflowCWE-665 7.1 High2021-05-14
CVE-2021-29555 Division by 0 in `FusedBatchNorm` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29556 Division by 0 in `Reverse` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29557 Division by 0 in `SparseMatMul` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29558 Heap buffer overflow in `SparseSplit` — tensorflowCWE-787 2.5 Low2021-05-14
CVE-2021-29559 Heap OOB access in unicode ops — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29560 Heap buffer overflow in `RaggedTensorToTensor` — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29561 CHECK-fail in `LoadAndRemapMatrix` — tensorflowCWE-617 2.5 Low2021-05-14
CVE-2021-29562 CHECK-fail in `tf.raw_ops.IRFFT` — tensorflowCWE-617 2.5 Low2021-05-14
CVE-2021-29563 CHECK-fail in `tf.raw_ops.RFFT` — tensorflowCWE-617 2.5 Low2021-05-14
CVE-2021-29564 Null pointer dereference in `EditDistance` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29565 Null pointer dereference in `SparseFillEmptyRows` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29566 Heap OOB access in `Dilation2DBackpropInput` — tensorflowCWE-787 2.5 Low2021-05-14
CVE-2021-29567 Lack of validation in `SparseDenseCwiseMul` — tensorflowCWE-617 2.5 Low2021-05-14
CVE-2021-29568 Reference binding to null in `ParameterizedTruncatedNormal` — tensorflowCWE-824 2.5 Low2021-05-14
CVE-2021-29569 Heap out of bounds read in `RequantizationRange` — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29570 Heap out of bounds read in `MaxPoolGradWithArgmax` — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29571 Memory corruption in `DrawBoundingBoxesV2` — tensorflowCWE-787 4.5 Medium2021-05-14
CVE-2021-29572 Reference binding to nullptr in `SdcaOptimizer` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29573 Division by 0 in `MaxPoolGradWithArgmax` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29574 Undefined behavior in `MaxPool3DGradGrad` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29575 Overflow/denial of service in `tf.raw_ops.ReverseSequence` — tensorflowCWE-119 2.5 Low2021-05-14
CVE-2021-29576 Heap buffer overflow in `MaxPool3DGradGrad` — tensorflowCWE-119 2.5 Low2021-05-14
CVE-2021-29577 Heap buffer overflow in `AvgPool3DGrad` — tensorflowCWE-119 2.5 Low2021-05-14
CVE-2021-29578 Heap buffer overflow in `FractionalAvgPoolGrad` — tensorflowCWE-119 2.5 Low2021-05-14

This page lists every published CVE security advisory associated with TensorFlow. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.