Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-4hvf-hxvg-f67v

Опубликовано: 09 фев. 2022
Источник: github
Github: Прошло ревью
CVSS4: 8.7
CVSS3: 8.8

Описание

Read and Write outside of bounds in TensorFlow

Impact

An attacker can craft a TFLite model that would allow limited reads and writes outside of arrays in TFLite. This exploits missing validation in the conversion from sparse tensors to dense tensors.

Patches

We have patched the issue in GitHub commit 6364463d6f5b6254cac3d6aedf999b6a96225038. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.

For more information

Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.

Attribution

This vulnerability has been reported by Wang Xuan of Qihoo 360 AIVul Team.

Ссылки

Пакеты

Наименование

tensorflow

pip
Затронутые версииВерсия исправления

< 2.5.3

2.5.3

Наименование

tensorflow

pip
Затронутые версииВерсия исправления

>= 2.6.0, < 2.6.3

2.6.3

Наименование

tensorflow

pip
Затронутые версииВерсия исправления

= 2.7.0

2.7.1

Наименование

tensorflow-cpu

pip
Затронутые версииВерсия исправления

< 2.5.3

2.5.3

Наименование

tensorflow-cpu

pip
Затронутые версииВерсия исправления

>= 2.6.0, < 2.6.3

2.6.3

Наименование

tensorflow-cpu

pip
Затронутые версииВерсия исправления

= 2.7.0

2.7.1

Наименование

tensorflow-gpu

pip
Затронутые версииВерсия исправления

< 2.5.3

2.5.3

Наименование

tensorflow-gpu

pip
Затронутые версииВерсия исправления

>= 2.6.0, < 2.6.3

2.6.3

Наименование

tensorflow-gpu

pip
Затронутые версииВерсия исправления

= 2.7.0

2.7.1

EPSS

Процентиль: 53%
0.00296
Низкий

8.7 High

CVSS4

8.8 High

CVSS3

CVE ID

CVE-2022-23560

Дефекты

CWE-125
CWE-787

Связанные уязвимости

nvd логотип

CVE-2022-23560

CVSS3: 8.8
nvd
около 4 лет назад

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would allow limited reads and writes outside of arrays in TFLite. This exploits missing validation in the conversion from sparse tensors to dense tensors. The fix is included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range. Users are advised to upgrade as soon as possible.

debian логотип

CVE-2022-23560

CVSS3: 8.8
debian
около 4 лет назад

Tensorflow is an Open Source Machine Learning Framework. An attacker c ...

EPSS

Процентиль: 53%
0.00296
Низкий

8.7 High

CVSS4

8.8 High

CVSS3

CVE ID

CVE-2022-23560

Дефекты

CWE-125
CWE-787