CVE-2025-0649

EPSS 0.14%

Published: 5/6/2025Modified: 11/4/2025

Description

Incorrect JSON input stringification in Google's Tensorflow serving versions up to 2.18.0 allows for potentially unbounded recursion leading to server crash.

Affected packages (1)

Debian/tensorflowfrom 0

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2025-0649