目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

tensorflow 厂商漏洞列表 / CVE 中文分析 403

tensorflow 厂商相关 403 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

TensorFlow 是 Google 开发的开源机器学习框架,广泛用于构建和训练深度学习模型。其历史漏洞多涉及内存安全缺陷、拒绝服务及越权访问,部分源于底层 C++ 组件的缓冲区溢出或逻辑错误。近期关注点在于模型权重泄露及对抗样本攻击风险。尽管核心库安全性较高,但集成环境中的配置失误常导致数据暴露。建议及时更新版本并遵循最小权限原则,以缓解潜在的安全威胁。

上位製品 tensorflow: tensorflow keras
CVE IDタイトルCVSS深刻度公開日
CVE-2021-29608 Heap OOB and null pointer dereference in `RaggedTensorToTensor` — tensorflowCWE-131 5.3 Medium2021-05-14
CVE-2021-29609 Incomplete validation in `SparseAdd` — tensorflowCWE-665 5.3 Medium2021-05-14
CVE-2021-29610 Invalid validation in `QuantizeAndDequantizeV2` — tensorflowCWE-665 3.6 Low2021-05-14
CVE-2021-29611 Incomplete validation in `SparseReshape` — tensorflowCWE-665 3.6 Low2021-05-14
CVE-2021-29612 Heap buffer overflow in `BandedTriangularSolve` — tensorflowCWE-120 3.6 Low2021-05-14
CVE-2021-29613 Incomplete validation in `tf.raw_ops.CTCLoss` — tensorflowCWE-665 6.3 Medium2021-05-14
CVE-2021-29614 Interpreter crash from `tf.io.decode_raw` — tensorflowCWE-665 7.1 High2021-05-14
CVE-2021-29555 Division by 0 in `FusedBatchNorm` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29556 Division by 0 in `Reverse` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29557 Division by 0 in `SparseMatMul` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29558 Heap buffer overflow in `SparseSplit` — tensorflowCWE-787 2.5 Low2021-05-14
CVE-2021-29559 Heap OOB access in unicode ops — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29560 Heap buffer overflow in `RaggedTensorToTensor` — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29561 CHECK-fail in `LoadAndRemapMatrix` — tensorflowCWE-617 2.5 Low2021-05-14
CVE-2021-29562 CHECK-fail in `tf.raw_ops.IRFFT` — tensorflowCWE-617 2.5 Low2021-05-14
CVE-2021-29563 CHECK-fail in `tf.raw_ops.RFFT` — tensorflowCWE-617 2.5 Low2021-05-14
CVE-2021-29564 Null pointer dereference in `EditDistance` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29565 Null pointer dereference in `SparseFillEmptyRows` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29566 Heap OOB access in `Dilation2DBackpropInput` — tensorflowCWE-787 2.5 Low2021-05-14
CVE-2021-29567 Lack of validation in `SparseDenseCwiseMul` — tensorflowCWE-617 2.5 Low2021-05-14
CVE-2021-29568 Reference binding to null in `ParameterizedTruncatedNormal` — tensorflowCWE-824 2.5 Low2021-05-14
CVE-2021-29569 Heap out of bounds read in `RequantizationRange` — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29570 Heap out of bounds read in `MaxPoolGradWithArgmax` — tensorflowCWE-125 2.5 Low2021-05-14
CVE-2021-29571 Memory corruption in `DrawBoundingBoxesV2` — tensorflowCWE-787 4.5 Medium2021-05-14
CVE-2021-29572 Reference binding to nullptr in `SdcaOptimizer` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29573 Division by 0 in `MaxPoolGradWithArgmax` — tensorflowCWE-369 2.5 Low2021-05-14
CVE-2021-29574 Undefined behavior in `MaxPool3DGradGrad` — tensorflowCWE-476 2.5 Low2021-05-14
CVE-2021-29575 Overflow/denial of service in `tf.raw_ops.ReverseSequence` — tensorflowCWE-119 2.5 Low2021-05-14
CVE-2021-29576 Heap buffer overflow in `MaxPool3DGradGrad` — tensorflowCWE-119 2.5 Low2021-05-14
CVE-2021-29577 Heap buffer overflow in `AvgPool3DGrad` — tensorflowCWE-119 2.5 Low2021-05-14

本页汇总了 tensorflow 厂商截至目前公开的全部 403 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。