pkg:Bitnami/tensorflow

423 total CVEsCRITICAL9HIGH106MEDIUM210LOW98

✅ Check your installed version

All known vulnerabilities

CRITICAL9.8CVE-2023-25668TensorFlow vulnerable to heap out-of-buffer read in the QuantizeAndDequantize operation
from 0, < 2.12.0
CRITICAL9.3CVE-2021-41208Incomplete validation in boosted trees code
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
CRITICAL9.3CVE-2021-37678Arbitrary code execution due to YAML deserialization
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
CRITICAL9.1CVE-2021-35958TensorFlow through 2.5.0 allows attackers to overwrite arbitrary files via a crafted archive when tf.keras.utils.get_file is used with extr…
from 0, < 2.5.1
CRITICAL9.1CVE-2022-35938OOB read in `Gather_nd` op in TensorFlow Lite Micro
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
CRITICAL9.1CVE-2020-26269TensorFlow vulnerable to heap out of bounds read in filesystem glob matching
>= 2.4.0-rc0, < 2.4.0, >= 2.4.0-rc1, < 2.4.0, >= 2.4.0-rc2, < 2.4.0, >= 2.4.0-rc3, < 2.4.0, >= 2.4.0-rc4, < 2.4.0
CRITICAL9.0CVE-2020-15206Denial of Service in Tensorflow
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
CRITICAL9.0CVE-2020-15205Data leak in Tensorflow
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
CRITICAL9.0CVE-2020-15202Integer truncation in Shard API usage
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
HIGH8.8CVE-2022-23566Out of bounds write in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH8.8CVE-2022-23561Out of bounds write in TFLite
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH8.8CVE-2022-23560Read and Write outside of bounds in TFLite
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH8.8CVE-2022-23559Integer overflow in TFLite
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH8.8CVE-2022-23594Out of bounds read in Tensorflow
>= 2.7.0, < 2.7.1
HIGH8.8CVE-2022-23587Integer overflow in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH8.8CVE-2022-23574Out of bounds read and write in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH8.7CVE-2020-15207Segfault and data corruption in tensorflow-lite
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
HIGH8.5CVE-2020-15195Heap buffer overflow in Tensorflow
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
HIGH8.5CVE-2020-15196Heap buffer overflow in Tensorflow
>= 2.3.0, < 2.3.1
HIGH8.4CVE-2021-37639Null pointer dereference and heap OOB read in operations restoring tensors
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH8.1CVE-2022-23592Out of bounds read in Tensorflow
>= 2.7.0, < 2.8.0
HIGH8.1CVE-2022-21730Out of bounds read in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH8.1CVE-2022-21728Out of bounds read in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH8.1CVE-2022-21726Out of bounds read in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH8.1CVE-2020-15212Out of bounds access in tensorflow-lite
>= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
HIGH8.1CVE-2020-15214Out of bounds write in tensorflow-lite
>= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
HIGH8.0CVE-2023-25801TensorFlow has double free in Fractional(Max/Avg)Pool
from 0, < 2.12.0
HIGH7.8CVE-2022-29216Code injection in `saved_model_cli` in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
HIGH7.8CVE-2021-41201Unitialized access in `EinsumHelper::ParseEquation`
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.8CVE-2021-41203Missing validation during checkpoint loading
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.8CVE-2021-41214Reference binding to `nullptr` in `tf.ragged.cross`
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.8CVE-2021-41219Undefined behavior via `nullptr` reference binding in sparse matrix multiplication
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.8CVE-2021-41220Use after free / memory leak in `CollectiveReduceV2`
>= 2.6.0, < 2.6.1
HIGH7.8CVE-2021-41221Access to invalid memory during shape inference in `Cudnn*` ops
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.8CVE-2021-37648Incorrect validation of `SaveV2` inputs
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37650Segfault and heap buffer overflow in `{Experimental,}DatasetToTFRecord`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37652Use after free in boosted trees creation
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37663Incomplete validation in `QuantizeV2`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37665Incomplete validation in MKL requantization
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37666Reference binding to nullptr in `RaggedTensorToVariant`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37667Reference binding to nullptr in unicode encoding
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37671Reference binding to nullptr in map operations
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37676Reference binding to nullptr in shape inference
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37681NPE in TFLite
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37688Null pointer dereference in TFLite
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.8CVE-2021-37689Null pointer dereference in TFLite MLIR optimizations
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.7CVE-2021-37637Null pointer dereference in `CompressElement`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.7CVE-2021-37638Null pointer dereference in `RaggedTensorToTensor`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.7CVE-2021-37643Null pointer dereference in `MatrixDiagPartOp`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.7CVE-2021-37647Null pointer dereference in `SparseTensorSliceDataset`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.7CVE-2021-37649Null pointer dereference in `UncompressElement`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.6CVE-2022-23584Use after free in `DecodePng` in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH7.6CVE-2022-23562Integer overflow in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH7.6CVE-2022-23558Integer overflow in TFLite array creation
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH7.6CVE-2022-21740Heap overflow in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH7.6CVE-2022-21736Undefined behavior in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH7.6CVE-2022-23573Uninitialized variable access in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH7.6CVE-2022-21727Integer overflow in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH7.5CVE-2025-55559An issue was discovered TensorFlow v2.18.0.
>= 2.18.0, < 2.18.1
HIGH7.5CVE-2023-33976TensorFlow segfault in array_ops.upper_bound
from 0, < 2.12.1
HIGH7.5CVE-2023-25659TensorFlow vulnerable to Out-of-Bounds Read in DynamicStitch
from 0, < 2.12.0
HIGH7.5CVE-2023-25660TensorFlow vulnerable to seg fault in `tf.raw_ops.Print`
from 0, < 2.12.0
HIGH7.5CVE-2023-25662TensorFlow vulnerable to integer overflow in EditDistance
from 0, < 2.12.0
HIGH7.5CVE-2023-25663TensorFlow has Null Pointer Error in TensorArrayConcatV2
from 0, < 2.12.0
HIGH7.5CVE-2023-25664TensorFlow vulnerable to Heap Buffer Overflow in AvgPoolGrad
from 0, < 2.12.0
HIGH7.5CVE-2023-25665TensorFlow has Null Pointer Error in SparseSparseMaximum
from 0, < 2.12.0
HIGH7.5CVE-2023-25666TensorFlow has Floating Point Exception in AudioSpectrogram
from 0, < 2.12.0
HIGH7.5CVE-2023-25669TensorFlow has Floating Point Exception in AvgPoolGrad with XLA
from 0, < 2.12.0
HIGH7.5CVE-2023-25670TensorFlow has Null Pointer Error in QuantizedMatMulWithBiasAndDequantize
from 0, < 2.12.0
HIGH7.5CVE-2023-25671TensorFlow has segmentation fault in tfg-translate
from 0, < 2.12.0
HIGH7.5CVE-2023-25672TensorFlow has Null Pointer Error in LookupTableImportV2
from 0, < 2.12.0
HIGH7.5CVE-2023-25673TensorFlow has Floating Point Exception in TensorListSplit with XLA
from 0, < 2.12.0
HIGH7.5CVE-2023-25674TensorFlow has Null Pointer Error in RandomShuffle with XLA enable
from 0, < 2.12.0
HIGH7.5CVE-2023-25675TensorFlow has Segfault in Bincount with XLA
from 0, < 2.12.0
HIGH7.5CVE-2023-25676TensorFlow has null dereference on ParallelConcat with XLA
from 0, < 2.12.0
HIGH7.5CVE-2023-27579TensorFlow has Floating Point Exception in TFLite in conv kernel
from 0, < 2.12.0
HIGH7.5CVE-2023-25658TensorFlow vulnerable to Out-of-Bounds Read in GRUBlockCellGrad
from 0, < 2.12.0
HIGH7.5CVE-2022-36016`CHECK`-fail in `tensorflow::full_type::SubstituteFromAttrs` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
HIGH7.5CVE-2022-36015Integer overflow in math ops in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
HIGH7.5CVE-2022-23591Stack overflow in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH7.5CVE-2021-41228Code injection in `saved_model_cli`
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.5CVE-2020-15203Denial of Service in Tensorflow
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
HIGH7.4CVE-2020-15208Data corruption in tensorflow-lite
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
HIGH7.3CVE-2021-37635Heap out of bounds access in sparse reduction operations
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.3CVE-2021-37654Heap OOB and CHECK fail in `ResourceGather`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.3CVE-2021-37655Heap OOB in `ResourceScatterUpdate`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.3CVE-2021-37659Reference binding to nullptr and heap OOB in binary cwise ops
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.3CVE-2021-37664Heap OOB in boosted trees
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.3CVE-2021-29591Stack overflow due to looping TFLite subgraph
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
HIGH7.1CVE-2022-41902Out of bounds write in grappler in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
HIGH7.1CVE-2022-41900FractionalMaxPool and FractionalAVGPool heap out-of-bounds acess in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
HIGH7.1CVE-2022-41894Buffer overflow in `CONV_3D_TRANSPOSE` on TFLite
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
HIGH7.1CVE-2022-29208Segfault and Out-of-bounds Write write due to incomplete validation in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
HIGH7.1CVE-2022-23563Insecure temporary file in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
HIGH7.1CVE-2021-41205Heap OOB read in all `tf.raw_ops.QuantizeAndDequantizeV*` ops
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.1CVE-2021-41210Heap OOB read in `tf.raw_ops.SparseCountSparseOutput`
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.1CVE-2021-41211Heap OOB in shape inference for `QuantizeV2`
>= 2.6.0, < 2.6.1
HIGH7.1CVE-2021-41212Heap OOB read in `tf.ragged.cross`
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.1CVE-2021-41223Heap OOB in `FusedBatchNorm` kernels
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.1CVE-2021-41224`SparseFillEmptyRows` heap OOB
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.1CVE-2021-41226Heap OOB in `SparseBinCount`
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
HIGH7.1CVE-2021-37641Heap OOB in `RaggedGather`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.1CVE-2021-37651Heap buffer overflow in `FractionalAvgPoolGrad`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.1CVE-2021-37656Reference binding to nullptr in `RaggedTensorToSparse`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.1CVE-2021-37657Reference binding to nullptr in `MatrixDiagV*` ops
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.1CVE-2021-37658Reference binding to nullptr in `MatrixSetDiagV*` ops
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.1CVE-2021-37662Reference binding to nullptr in boosted trees
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.1CVE-2021-37679Heap OOB in nested `tf.map_fn` with `RaggedTensor`s
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
HIGH7.1CVE-2021-29614Interpreter crash from `tf.io.decode_raw`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
HIGH7.1CVE-2021-29606Heap OOB read in TFLite
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
HIGH7.1CVE-2021-29605Integer overflow in TFLite memory allocation
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
HIGH7.1CVE-2020-15193Memory corruption in Tensorflow
>= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
HIGH7.0CVE-2022-35939Out of bounds write in `scatter_nd` op in TensorFlow Lite
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
HIGH7.0CVE-2022-35937OOB read in `Gather_nd` op in TensorFlow Lite
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
HIGH7.0CVE-2021-41206Incomplete validation of shapes in multiple TF ops
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM6.8CVE-2022-41880ThreadUnsafeUnigramCandidateSampler Heap out of bounds in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM6.8CVE-2022-41883Out of bounds segmentation fault due to unequal op inputs in Tensorflow
>= 2.10.0, < 2.10.1
MEDIUM6.6CVE-2021-41227Arbitrary memory read in `ImmutableConst`
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM6.6CVE-2021-37690Use after free and segfault in shape inference functions
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM6.5CVE-2025-55556TensorFlow v2.18.0 was discovered to output random results when compiling Embedding, leading to unexpected behavior in the application.
>= 2.18.0, < 2.18.1
MEDIUM6.5CVE-2023-25661Denial of Service in TensorFlow
from 0, < 2.11.1
MEDIUM6.5CVE-2023-25667TensorFlow vulnerable to segfault when opening multiframe gif
from 0, < 2.12.0
MEDIUM6.5CVE-2022-23583`CHECK`-failures in binary ops in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23582`CHECK`-failures in `TensorByteSize` in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23579`CHECK`-failures during Grappler's `SafeToRemoveIdentity` in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23575Integer overflow in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23576Integer overflow in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23577Null-dereference in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-21735Division by zero in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-21734`CHECK`-failures in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-21731Type confusion leading to segfault in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-21729Overflow and uncaught divide by zero in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-21725Division by zero in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23564Reachable Assertion in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23565`CHECK`-failures in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23557Division by zero in TFLite
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-21741Division by zero in TFLite
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-21739Null pointer dereference in TensorFlow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-21738Integer overflow leading to crash in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-21737Assertion failure based denial of service in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23567Integer overflows in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23568Integer overflows in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23569`CHECK`-fails when building invalid tensor shapes in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23570Null-dereference in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23589Null pointer dereference in Grappler's `IsConstant` in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23571Reachable Assertion in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23572Crash when type cannot be specialized in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23588`CHECK`-fails due to attempting to build a reference tensor in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23586Multiple `CHECK`-fails in `function.cc` in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23580Abort caused by allocating a vector that is too large in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2022-23581`CHECK`-failures during Grappler's `IsSimplifiableReshape` in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM6.5CVE-2020-15210Segmentation fault in tensorflow-lite
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
MEDIUM6.3CVE-2021-29613Incomplete validation in `tf.raw_ops.CTCLoss`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
MEDIUM6.3CVE-2021-29601Integer overflow in TFLite concatentation
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
MEDIUM6.3CVE-2020-15197Denial of Service in Tensorflow
>= 2.3.0, < 2.3.1
MEDIUM5.9CVE-2022-35983`CHECK` fail in `Save` and `SaveSlices` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35984`CHECK` fail in `ParameterizedTruncatedNormal` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35985`CHECK` fail in `LRNGrad` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35986Segfault in `RaggedBincount` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35988`CHECK` fail in `tf.linalg.matrix_rank` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35989`CHECK` fail in `MaxPool` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35982Segfault in `SparseBincount` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35981`CHECK` fail in `FractionalMaxPoolGrad` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35979Segfault in `QuantizedRelu` and `QuantizedRelu6`
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35974Segfault in `QuantizeDownAndShrinkRange` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35973Segfault in `QuantizedMatMul` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35972Segfault in `QuantizedBiasAdd` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35971`CHECK` fail in `FakeQuantWithMinMaxVars` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35970Segfault in `QuantizedInstanceNorm` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35969`CHECK` fail in `Conv2DBackpropInput` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35968`CHECK` fail in `AvgPoolGrad` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35967Segfault in `QuantizedAdd` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35966Segfault in `QuantizedAvgPool` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35990`CHECK` fail in `FakeQuantWithMinMaxVarsPerChannelGradient` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35991`CHECK` fail in `TensorListScatter` and `TensorListScatterV2` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35965Segfault in `LowerBound` and `UpperBound` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35992`CHECK` fail in `TensorListFromTensor` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35993`CHECK` fail in `SetSize` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35964Segfault in `BlockLSTMGradV2` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35963`CHECK` failures in `FractionalAvgPoolGrad` in TensorFlow
>= 2.7.0, < 2.7.2 | >= 2.8.0, <= 2.8.0, >= 2.9.0, <= 2.9.0
MEDIUM5.9CVE-2022-35952`CHECK` failures in `UnbatchGradOp` in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35940Int overflow in `RaggedRangeOp` in Tensoflow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35994`CHECK` fail in `CollectiveGather` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35960`CHECK` failure in `TensorListReserve` in TensorFlow
>= 2.7.0, < 2.7.2 | >= 2.8.0, <= 2.8.0, >= 2.9.0, <= 2.9.0
MEDIUM5.9CVE-2022-35996Floating point exception in `Conv2D` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35959`CHECK` failures in `AvgPool3DGrad` in TensorFlow
>= 2.7.0, < 2.7.2 | >= 2.8.0, <= 2.8.0, >= 2.9.0, <= 2.9.0
MEDIUM5.9CVE-2022-35998`CHECK` fail in `EmptyTensorList` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36000Null dereference on MLIR on empty function attributes in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36001`CHECK` fail in `DrawBoundingBoxes` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36002`CHECK` fail in `Unbatch` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36013Null-dereference in `mlir::tfg::GraphDefImporter::ConvertNodeDef` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36011Null dereference on MLIR on empty function attributes in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36017Segfault in `Requantize` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36003`CHECK` fail in `RandomPoissonV2` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36005`CHECK` fail in `FakeQuantWithMinMaxVarsGradient` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35995`CHECK` fail in `AudioSummaryV2` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36004`CHECK` fail in `tf.random.gamma` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36014Null-dereference in `mlir::tfg::TFOp::nameAttr` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36012Assertion fail on MLIR empty edge names in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35987`CHECK` fail in `DenseBincount` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35941`CHECK` failure in `AvgPoolOp` in Tensorflow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36026`CHECK` fail in `QuantizeAndDequantizeV3` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36018`CHECK` fail in `RaggedTensorToVariant` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36019`CHECK` fail in `FakeQuantWithMinMaxVarsPerChannel` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-36027Segfault TFLite converter on per-channel quantized transposed convolutions in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35934`CHECK` failure in tf.reshape in Tensorflow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35935`CHECK` failure in `SobolSample` via missing validation in TensorFlow
>= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35997`CHECK` fail in `tf.sparse.cross` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-35999`CHECK` fail in `Conv2DBackpropInput` in TensorFlow
from 0, < 2.7.2, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM5.9CVE-2022-23593Segfault in `simplifyBroadcast` in Tensorflow
>= 2.7.0, < 2.8.0
MEDIUM5.9CVE-2022-23590Crash due to erroneous `StatusOr` in Tensorflow
from 0, < 2.7.1
MEDIUM5.9CVE-2020-15265Segfault in `tf.quantization.quantize_and_dequantize`
from 0, < 2.4.0
MEDIUM5.9CVE-2020-15209Null pointer dereference in tensorflow-lite
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
MEDIUM5.9CVE-2020-15200Segfault in Tensorflow
>= 2.3.0, < 2.3.1
MEDIUM5.9CVE-2020-15199Denial of Service in Tensorflow
>= 2.3.0, < 2.3.1
MEDIUM5.5CVE-2022-41889Segfault via invalid attributes in `pywrap_tfe_src.cc` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM5.5CVE-2022-29213Incomplete validation in signal ops leads to crashes in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29212Core dump when loading TFLite models with quantization in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29211Segfault in TensorFlow if `tf.histogram_fixed_width` is called with NaN values
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29210Heap buffer overflow due to incorrect hash function in TensorFlow
>= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29209Type confusion leading to `CHECK`-failure based denial of service in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29207Undefined behavior when users supply invalid resource handles in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29206Missing validation results in undefined behavior in `SparseTensorDenseAdd` in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29205Segfault due to missing support for quantized types in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29204Missing validation causes denial of service in TensorFlow via `Conv3DBackpropFilterV2`
>= 1.15.0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29203Integer overflow in `SpaceToBatchND` in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29202Denial of service in TensorFlow due to lack of validation in `tf.ragged.constant`
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29201Missing validation in `QuantizedConv2D` results in undefined behavior in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29200Missing validation causes denial of service in TensorFlow via `LSTMBlockCell`
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29199Missing validation causes denial of service in TensorFlow via `LoadAndRemapMatrix`
from 0, < 2.6.4, >= 2.7.0, < 2.7.2
MEDIUM5.5CVE-2022-29198Missing validation causes denial of service in TensorFlow via `SparseTensorToCSRSparseMatrix`
from 0, < 2.6.4, >= 2.7.0, < 2.7.2
MEDIUM5.5CVE-2022-29197Missing validation causes denial of service in TensorFlow via `UnsortedSegmentJoin`
from 0, < 2.6.4, >= 2.7.0, < 2.7.2
MEDIUM5.5CVE-2022-29196Missing validation causes denial of service in TensorFlow via `Conv3DBackpropFilterV2`
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29195Missing validation causes denial of service in TensorFlow via `StagePeek`
from 0, < 2.6.4, >= 2.7.0, < 2.7.2
MEDIUM5.5CVE-2022-29194Missing validation causes denial of service via `DeleteSessionTensor` in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29192Missing validation crashes `QuantizeAndDequantizeV4Grad` in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29191Missing validation causes denial of service via `GetSessionTensor` in TensorFlow
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2022-29193Missing validation causes `TensorSummaryV2` in TensorFlow to crash
from 0, < 2.6.4, >= 2.7.0, < 2.7.2, >= 2.8.0, < 2.8.1
MEDIUM5.5CVE-2021-41195Crash in `tf.math.segment_*` operations
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41196Crash in `max_pool3d` when size argument is 0 or negative
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41197Crashes due to overflow and `CHECK`-fail in ops with large tensor shapes
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41198Overflow/crash in `tf.tile` when tiling tensor is large
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41199Overflow/crash in `tf.image.resize` when size is large
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41200Incomplete validation in `tf.summary.create_file_writer`
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41202Overflow/crash in `tf.range`
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41204Segfault while copying constant resource tensor
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41207FPE in `ParallelConcat`
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41209FPE in convolutions with zero size filters
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41213Deadlock in mutually recursive `tf.function` objects
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41215Null pointer exception in `DeserializeSparse`
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41216Heap buffer overflow in `Transpose`
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41217Null pointer exception when `Exit` node is not preceded by `Enter` op
from 0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41218Integer division by 0 in `tf.raw_ops.AllToAll`
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41222Segfault due to negative splits in `SplitV`
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-41225A use of uninitialized value vulnerability in Tensorflow
>= 2.4.0, < 2.4.4, >= 2.5.0, < 2.5.2, >= 2.6.0, < 2.6.1
MEDIUM5.5CVE-2021-37636Floating point exception in `SparseDenseCwiseDiv`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37640Integer division by 0 in sparse reshaping
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37642Division by 0 in `ResourceScatterDiv`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37644`std::abort` raised from `TensorListReserve`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37645Integer overflow due to conversion to unsigned
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37646Bad alloc in `StringNGrams` caused by integer conversion
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37653Division by 0 in `ResourceGather`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37660Division by 0 in inplace operations
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37661Crash caused by integer conversion to unsigned
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37668FPE in `tf.raw_ops.UnravelIndex`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37669Crash in NMS ops caused by integer conversion to unsigned
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37670Heap OOB in `UpperBound` and `LowerBound`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37672Heap OOB in `SdcaOptimizerV2`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37673`CHECK`-fail in `MapStage`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37674Incomplete validation in `MaxPoolGrad`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37675Division by 0 in most convolution operators
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37677Missing validation in shape inference for `Dequantize`
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37680Division by zero in TFLite
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37683FPE in TFLite division operations
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37684FPE in TFLite pooling operations
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37685Heap OOB in TFLite
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37687Heap OOB in TFLite's `Gather*` implementations
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37686Infinite loop in TFLite
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37691FPE in LSH in TFLite
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM5.5CVE-2021-37692Segfault on strings tensors with mistmatched dimensions, due to Go code
>= 2.5.0, < 2.6.0
MEDIUM5.4CVE-2020-15198Heap buffer overflow in Tensorflow
>= 2.3.0, < 2.3.1
MEDIUM5.3CVE-2021-29607Incomplete validation in `SparseSparseMinimum`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
MEDIUM5.3CVE-2022-23595Null pointer dereference in TensorFlow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM5.3CVE-2021-29609Incomplete validation in `SparseAdd`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
MEDIUM5.3CVE-2021-29608Heap OOB and null pointer dereference in `RaggedTensorToTensor`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
MEDIUM5.3CVE-2020-15204Segfault in Tensorflow
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
MEDIUM5.3CVE-2020-15191Undefined behavior in Tensorflow
>= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
MEDIUM5.3CVE-2020-15194Denial of Service in Tensorflow
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
MEDIUM5.3CVE-2020-15190Segfault in Tensorflow
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
MEDIUM5.0CVE-2020-5215Segmentation faultin TensorFlow when converting a Python string to `tf.float16`
from 0, < 1.15.2, >= 2.0.0, < 2.0.1
MEDIUM4.8CVE-2022-41911Invalid char to bool conversion when printing a tensor in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41910Heap out of bounds read in `QuantizeAndDequantizeV2` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41909Segfault in `CompositeTensorVariantToComponents` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41908`CHECK` fail via inputs in `PyFunc` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41907Overflow in `ResizeNearestNeighborGrad` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41901`CHECK_EQ` fail via input in `SparseMatrixNNZ` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41899`CHECK` fail via inputs in `SdcaOptimizer` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41898`CHECK` fail via inputs in `SparseFillEmptyRowsGrad` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41897`FractionalMaxPoolGrad` Heap out of bounds read in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41896`tf.raw_ops.Mfcc` crashes in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41895`MirrorPadGrad` heap out of bounds read in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41893`CHECK_EQ` fail in `tf.raw_ops.TensorListResize` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41891Segfault in `tf.raw_ops.TensorListConcat` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41890`CHECK` fail in `BCast` overflow in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41888Unckecked rank size in `tf.image.generate_bounding_box_proposals` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41887Overflow in `tf.keras.losses.poisson` in Tensorflow
>= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41886Overflow in `ImageProjectiveTransformV2` in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2022-41885Overflow in `FusedResizeAndPadConv2D` in Tensorflow
from 0, < 2.7.4, >= 2.8.0, < 2.8.1, >= 2.9.0, < 2.9.1
MEDIUM4.8CVE-2022-41884Seg fault in `ndarray_tensor_bridge` due to zero and large inputs in Tensorflow
from 0, < 2.8.4, >= 2.9.0, < 2.9.3, >= 2.10.0, < 2.10.1
MEDIUM4.8CVE-2020-15211Out of bounds access in tensorflow-lite
from 0, < 1.15.4, >= 2.0.0, < 2.0.3, >= 2.1.0, < 2.1.2, >= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
MEDIUM4.8CVE-2020-15201Heap buffer overflow in Tensorflow
>= 2.3.0, < 2.3.1
MEDIUM4.5CVE-2021-29571Memory corruption in `DrawBoundingBoxesV2`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
MEDIUM4.4CVE-2021-37682Use of unitialized value in TFLite
>= 2.3.0, < 2.3.4, >= 2.4.0, < 2.4.3, >= 2.5.0, < 2.5.1
MEDIUM4.4CVE-2021-29592Null pointer dereference in TFLite's `Reshape` operator
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
MEDIUM4.4CVE-2020-26271Heap out of bounds access in MakeEdge in TensorFlow
from 0, < 1.15.5, >= 2.0.0, < 2.0.4, >= 2.1.0, < 2.1.3, >= 2.2.0, < 2.2.2, >= 2.3.0, < 2.3.2
MEDIUM4.4CVE-2020-26270CHECK-fail in LSTM with zero-length input in TensorFlow
from 0, < 1.15.5, >= 2.0.0, < 2.0.4, >= 2.1.0, < 2.1.3, >= 2.2.0, < 2.2.2, >= 2.3.0, < 2.3.2
MEDIUM4.4CVE-2020-26268Write to immutable memory region in TensorFlow
from 0, < 1.15.5, >= 2.0.0, < 2.0.4, >= 2.1.0, < 2.1.3, >= 2.2.0, < 2.2.2, >= 2.3.0, < 2.3.2
MEDIUM4.4CVE-2020-26267Lack of validation in data format attributes in TensorFlow
from 0, < 1.15.5, >= 2.0.0, < 2.0.4, >= 2.1.0, < 2.1.3, >= 2.2.0, < 2.2.2, >= 2.3.0, < 2.3.2
MEDIUM4.4CVE-2020-26266Uninitialized memory access in TensorFlow
from 0, < 1.15.5, >= 2.0.0, < 2.0.4, >= 2.1.0, < 2.1.3, >= 2.2.0, < 2.2.2, >= 2.3.0, < 2.3.2
MEDIUM4.3CVE-2022-23578Memory leak in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM4.3CVE-2022-21733Memory exhaustion in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM4.3CVE-2022-21732Memory exhaustion in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM4.3CVE-2022-23585Memory leak in decoding PNG images in Tensorflow
from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
MEDIUM4.3CVE-2020-15192Memory leak in Tensorflow
>= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
MEDIUM4.0CVE-2020-15213Denial of service in tensorflow-lite
>= 2.2.0, < 2.2.1, >= 2.3.0, < 2.3.1
LOW3.7CVE-2020-15266Float cast overflow undefined behavior
from 0, < 2.4.0
LOW3.6CVE-2021-29612Heap buffer overflow in `BandedTriangularSolve`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW3.6CVE-2021-29611Incomplete validation in `SparseReshape`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW3.6CVE-2021-29610Invalid validation in `QuantizeAndDequantizeV2`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29619Segfault in `tf.raw_ops.SparseCountSparseOutput`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29618Crash in `tf.transpose` with complex inputs
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29617Crash in `tf.strings.substr` due to `CHECK`-fail
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29616Null dereference in Grappler's `TrySimplify`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29615Stack overflow in `ParseAttrValue` with nested tensors
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29604Division by zero in TFLite's implementation of hashtable lookup
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29603Heap OOB write in TFLite
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29602Division by zero in TFLite's implementation of `DepthwiseConv`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29600Division by zero in TFLite's implementation of `OneHot`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29599Division by zero in TFLite's implementation of Split
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29598Division by zero in TFLite's implementation of `SVDF`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29597Division by zero in TFLite's implementation of `SpaceToBatchNd`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29596Division by zero in TFLite's implementation of `EmbeddingLookup`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29595Division by zero in TFLite's implementation of `DepthToSpace`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29594Division by zero in TFLite's convolution code
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29593Division by zero in TFLite's implementation of `BatchToSpaceNd`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29590Heap OOB read in TFLite's implementation of `Minimum` or `Maximum`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29589Division by zero in TFLite's implementation of `GatherNd`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29588Division by zero in TFLite's implementation of `TransposeConv`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29587Division by zero in TFLite's implementation of `SpaceToDepth`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29586Division by zero in optimized pooling implementations in TFLite
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29585Division by zero in padding computation in TFLite
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29584CHECK-fail due to integer overflow
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29583Heap buffer overflow and undefined behavior in `FusedBatchNorm`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29582Heap OOB read in `tf.raw_ops.Dequantize`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29581Segfault in `CTCBeamSearchDecoder`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29580Undefined behavior and `CHECK`-fail in `FractionalMaxPoolGrad`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29579Heap buffer overflow in `MaxPoolGrad`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29578Heap buffer overflow in `FractionalAvgPoolGrad`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29577Heap buffer overflow in `AvgPool3DGrad`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29576Heap buffer overflow in `MaxPool3DGradGrad`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29575Overflow/denial of service in `tf.raw_ops.ReverseSequence`
from 0, < 2.1.5, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29574Undefined behavior in `MaxPool3DGradGrad`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29573Division by 0 in `MaxPoolGradWithArgmax`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29572Reference binding to nullptr in `SdcaOptimizer`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29570Heap out of bounds read in `MaxPoolGradWithArgmax`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29569Heap out of bounds read in `RequantizationRange`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29568Reference binding to null in `ParameterizedTruncatedNormal`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29567Lack of validation in `SparseDenseCwiseMul`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29566Heap OOB access in `Dilation2DBackpropInput`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29565Null pointer dereference in `SparseFillEmptyRows`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29564Null pointer dereference in `EditDistance`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29563CHECK-fail in `tf.raw_ops.RFFT`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29562CHECK-fail in `tf.raw_ops.IRFFT`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29561CHECK-fail in `LoadAndRemapMatrix`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29560Heap buffer overflow in `RaggedTensorToTensor`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29559Heap OOB access in unicode ops
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29558Heap buffer overflow in `SparseSplit`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29557Division by 0 in `SparseMatMul`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29556Division by 0 in `Reverse`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29555Division by 0 in `FusedBatchNorm`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29554Division by 0 in `DenseCountSparseOutput`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29553Heap OOB in `QuantizeAndDequantizeV3`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29552CHECK-failure in `UnsortedSegmentJoin`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29551OOB read in `MatrixTriangularSolve`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29550Division by 0 in `FractionalAvgPool`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29549Division by 0 in `QuantizedAdd`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29548Division by 0 in `QuantizedBatchNormWithGlobalNormalization`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29547Heap out of bounds in `QuantizedBatchNormWithGlobalNormalization`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29546Division by 0 in `QuantizedBiasAdd`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29545Heap buffer overflow in `SparseTensorToCSRSparseMatrix`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29544CHECK-fail in `QuantizeAndDequantizeV4Grad`
>= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29543CHECK-fail in `CTCGreedyDecoder`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29542Heap buffer overflow in `StringNGrams`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29541Null pointer dereference in `StringNGrams`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29540Heap buffer overflow in `Conv2DBackpropFilter`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29539Segfault in tf.raw_ops.ImmutableConst
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29538Division by zero in `Conv2DBackpropFilter`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29537Heap buffer overflow in `QuantizedResizeBilinear`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29536Heap buffer overflow in `QuantizedReshape`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29535Heap buffer overflow in `QuantizedMul`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29534CHECK-fail in SparseConcat
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29533CHECK-fail in DrawBoundingBoxes
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29532Heap out of bounds read in `RaggedCross`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29531CHECK-fail in tf.raw_ops.EncodePng
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29530Invalid validation in `SparseMatrixSparseCholesky`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29529Heap buffer overflow caused by rounding
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29528Division by 0 in `QuantizedMul`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29527Division by 0 in `QuantizedConv2D`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29526Division by 0 in `Conv2D`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29525Division by 0 in `Conv2DBackpropInput`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29524Division by 0 in `Conv2DBackpropFilter`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29523CHECK-fail in AddManySparseToTensorsMap
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29522Division by 0 in `Conv3DBackprop*`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29521Segfault in SparseCountSparseOutput
>= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29520Heap buffer overflow in `Conv3DBackprop*`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29519CHECK-fail in SparseCross due to type confusion
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29518Session operations in eager mode lead to null pointer dereferences
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29517Division by zero in `Conv3D`
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29516Null pointer dereference via invalid Ragged Tensors
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29515Reference binding to null pointer in `MatrixDiag*` ops
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29514Heap out of bounds write in `RaggedBinCount`
>= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29513Type confusion during tensor casts lead to dereferencing null pointers
from 0, < 2.1.4, >= 2.2.0, < 2.2.3, >= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2
LOW2.5CVE-2021-29512Heap buffer overflow in `RaggedBinCount`
>= 2.3.0, < 2.3.3, >= 2.4.0, < 2.4.2