tensorflow 厂商漏洞列表 / CVE 中文分析 403

tensorflow 厂商相关 403 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

TensorFlow 是 Google 开发的开源机器学习框架，广泛用于构建和训练深度学习模型。其历史漏洞多涉及内存安全缺陷、拒绝服务及越权访问，部分源于底层 C++ 组件的缓冲区溢出或逻辑错误。近期关注点在于模型权重泄露及对抗样本攻击风险。尽管核心库安全性较高，但集成环境中的配置失误常导致数据暴露。建议及时更新版本并遵循最小权限原则，以缓解潜在的安全威胁。

上位製品 tensorflow: tensorflow keras

CVEs 403

CVE ID	タイトル	CVSS	深刻度	公開日
CVE-2021-29523	CHECK-fail in AddManySparseToTensorsMap — tensorflowCWE-190	2.5	Low	2021-05-14
CVE-2021-29524	Division by 0 in `Conv2DBackpropFilter` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29585	Division by zero in padding computation in TFLite — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29586	Division by zero in optimized pooling implementations in TFLite — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29615	Stack overflow in `ParseAttrValue` with nested tensors — tensorflowCWE-674	2.5	Low	2021-05-14
CVE-2021-29616	Null dereference in Grappler's `TrySimplify` — tensorflowCWE-476	2.5	Low	2021-05-14
CVE-2021-29617	Crash in `tf.strings.substr` due to `CHECK`-fail — tensorflowCWE-755	2.5	Low	2021-05-14
CVE-2021-29618	Crash in `tf.transpose` with complex inputs — tensorflowCWE-755	2.5	Low	2021-05-14
CVE-2021-29619	Segfault in `tf.raw_ops.SparseCountSparseOutput` — tensorflowCWE-755	2.5	Low	2021-05-14
CVE-2021-29587	Division by zero in TFLite's implementation of `SpaceToDepth` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29588	Division by zero in TFLite's implementation of `TransposeConv` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29589	Division by zero in TFLite's implementation of `GatherNd` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29590	Heap OOB read in TFLite's implementation of `Minimum` or `Maximum` — tensorflowCWE-125	2.5	Low	2021-05-14
CVE-2021-29591	Stack overflow due to looping TFLite subgraph — tensorflowCWE-835	7.3	High	2021-05-14
CVE-2021-29592	Null pointer dereference in TFLite's `Reshape` operator — tensorflowCWE-476	4.4	Medium	2021-05-14
CVE-2021-29593	Division by zero in TFLite's implementation of `BatchToSpaceNd` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29594	Division by zero in TFLite's convolution code — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29595	Division by zero in TFLite's implementation of `DepthToSpace` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29596	Division by zero in TFLite's implementation of `EmbeddingLookup` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29597	Division by zero in TFLite's implementation of `SpaceToBatchNd` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29598	Division by zero in TFLite's implementation of `SVDF` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29599	Division by zero in TFLite's implementation of `Split` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29600	Division by zero in TFLite's implementation of `OneHot` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29601	Integer overflow in TFLite concatentation — tensorflowCWE-190	6.3	Medium	2021-05-14
CVE-2021-29602	Division by zero in TFLite's implementation of `DepthwiseConv` — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29603	Heap OOB write in TFLite — tensorflowCWE-787	2.5	Low	2021-05-14
CVE-2021-29604	Division by zero in TFLite's implementation of hashtable lookup — tensorflowCWE-369	2.5	Low	2021-05-14
CVE-2021-29605	Integer overflow in TFLite memory allocation — tensorflowCWE-190	7.1	High	2021-05-14
CVE-2021-29606	Heap OOB read in TFLite — tensorflowCWE-125	7.1	High	2021-05-14
CVE-2021-29607	Incomplete validation in `SparseSparseMinimum` — tensorflowCWE-754	5.3	Medium	2021-05-14

本页汇总了 tensorflow 厂商截至目前公开的全部 403 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目標達成 すべての支援者に感謝 — 100%達成しました！

tensorflow 厂商漏洞列表 / CVE 中文分析 403

目標達成すべての支援者に感謝 — 100%達成しました！