Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

tensorflow — Vulnerabilities & Security Advisories 403

Browse all 403 CVE security advisories affecting tensorflow. AI-powered Chinese analysis, POCs, and references for each vulnerability.

TensorFlow is an open-source machine learning framework primarily used for developing and deploying data flow graphs across various platforms. With 403 recorded Common Vulnerabilities and Exposures (CVEs), it has historically been susceptible to a wide array of security flaws. These incidents frequently involve remote code execution, buffer overflows, and denial-of-service conditions, often stemming from improper input validation or memory management errors within its C++ backend. While cross-site scripting is less common due to its backend nature, privilege escalation risks exist when the framework runs with elevated system permissions. Notable security characteristics include its complex dependency tree, which can introduce indirect vulnerabilities through third-party libraries. Major incidents have largely focused on exploitation of parsing routines and model serialization processes, highlighting the critical need for rigorous patch management and secure configuration practices in production environments to mitigate these persistent risks.

Found 402 results / 403Clear Filters
Top products by tensorflow: tensorflow keras
CVE IDTitleCVSSSeverityPublished
CVE-2021-29524 Division by 0 in `Conv2DBackpropFilter` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29585 Division by zero in padding computation in TFLite — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29586 Division by zero in optimized pooling implementations in TFLite — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29615 Stack overflow in `ParseAttrValue` with nested tensors — tensorflowCWE-674 2.5 Low2021-05-14
CVE-2021-29616 Null dereference in Grappler's `TrySimplify` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29617 Crash in `tf.strings.substr` due to `CHECK`-fail — tensorflowCWE-755 2.5 Low2021-05-14
CVE-2021-29618 Crash in `tf.transpose` with complex inputs — tensorflowCWE-755 2.5 Low2021-05-14
CVE-2021-29619 Segfault in `tf.raw_ops.SparseCountSparseOutput` — tensorflowCWE-755 2.5 Low2021-05-14
CVE-2021-29587 Division by zero in TFLite's implementation of `SpaceToDepth` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29588 Division by zero in TFLite's implementation of `TransposeConv` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29589 Division by zero in TFLite's implementation of `GatherNd` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29590 Heap OOB read in TFLite's implementation of `Minimum` or `Maximum` — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29591 Stack overflow due to looping TFLite subgraph — tensorflowCWE-835 7.3 High2021-05-14
CVE-2021-29592 Null pointer dereference in TFLite's `Reshape` operator — tensorflowCWE-476 4.4 Medium2021-05-14
CVE-2021-29593 Division by zero in TFLite's implementation of `BatchToSpaceNd` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29594 Division by zero in TFLite's convolution code — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29595 Division by zero in TFLite's implementation of `DepthToSpace` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29596 Division by zero in TFLite's implementation of `EmbeddingLookup` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29597 Division by zero in TFLite's implementation of `SpaceToBatchNd` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29598 Division by zero in TFLite's implementation of `SVDF` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29599 Division by zero in TFLite's implementation of `Split` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29600 Division by zero in TFLite's implementation of `OneHot` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29601 Integer overflow in TFLite concatentation — tensorflowCWE-190 6.3 Medium2021-05-14
CVE-2021-29602 Division by zero in TFLite's implementation of `DepthwiseConv` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29603 Heap OOB write in TFLite — tensorflowCWE-787 2.5 Low2021-05-14
CVE-2021-29604 Division by zero in TFLite's implementation of hashtable lookup — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29605 Integer overflow in TFLite memory allocation — tensorflowCWE-190 7.1 High2021-05-14
CVE-2021-29606 Heap OOB read in TFLite — tensorflowCWE-125 7.1 High2021-05-14
CVE-2021-29607 Incomplete validation in `SparseSparseMinimum` — tensorflowCWE-754 5.3 Medium2021-05-14
CVE-2021-29608 Heap OOB and null pointer dereference in `RaggedTensorToTensor` — tensorflowCWE-131 5.3 Medium2021-05-14

This page lists every published CVE security advisory associated with tensorflow. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.