Количество 3
Количество 3
CVE-2022-23592
Tensorflow is an Open Source Machine Learning Framework. TensorFlow's type inference can cause a heap out of bounds read as the bounds checking is done in a `DCHECK` (which is a no-op during production). An attacker can control the `input_idx` variable such that `ix` would be larger than the number of values in `node_t.args`. The fix will be included in TensorFlow 2.8.0. This is the only affected version.
CVE-2022-23592
Tensorflow is an Open Source Machine Learning Framework. TensorFlow's ...
GHSA-vq36-27g6-p492
Out of bounds read in Tensorflow
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-23592 Tensorflow is an Open Source Machine Learning Framework. TensorFlow's type inference can cause a heap out of bounds read as the bounds checking is done in a `DCHECK` (which is a no-op during production). An attacker can control the `input_idx` variable such that `ix` would be larger than the number of values in `node_t.args`. The fix will be included in TensorFlow 2.8.0. This is the only affected version. | CVSS3: 8.1 | 0% Низкий | около 4 лет назад |
| CVE-2022-23592 Tensorflow is an Open Source Machine Learning Framework. TensorFlow's ... | CVSS3: 8.1 | 0% Низкий | около 4 лет назад |
| GHSA-vq36-27g6-p492 Out of bounds read in Tensorflow | CVSS3: 8.1 | 0% Низкий | почти 4 года назад |
Уязвимостей на страницу