|
210051
|
5.9 |
MEDIUM
Network
|
google
|
tensorflow
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the …
|
CWE-787
Out-of-bounds Write
|
CVE-2020-15200
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210052
|
5.9 |
MEDIUM
Network
|
google
|
tensorflow
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the `splits` tensor…
|
CWE-20
Improper Input Validation
|
CVE-2020-15199
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210053
|
5.4 |
MEDIUM
Network
|
google
|
tensorflow
|
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-15198
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210054
|
6.3 |
MEDIUM
Network
|
google
|
tensorflow
|
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the …
|
-
|
CVE-2020-15197
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210055
|
9.9 |
CRITICAL
Network
|
google
|
tensorflow
|
In Tensorflow version 2.3.0, the `SparseCountSparseOutput` and `RaggedCountSparseOutput` implementations don't validate that the `weights` tensor has the same shape as the data. The check exists for …
|
CWE-125
Out-of-bounds Read
|
CVE-2020-15196
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210056
|
5.3 |
MEDIUM
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `SparseFillEmptyRowsGrad` implementation has incomplete validation of the shapes of its arguments. Although `reverse_index_map…
|
-
|
CVE-2020-15194
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210057
|
7.1 |
HIGH
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 2.2.1 and 2.3.1, the implementation of `dlpack.to_dlpack` can be made to use uninitialized memory resulting in further memory corruption. This is because the pybind11 gl…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2020-15193
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210058
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes a list of strings to `dlpack.to_dlpack` there is a memory leak following an expected validation failure. The issue occurs because the `…
|
CWE-20
Improper Input Validation
|
CVE-2020-15192
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210059
|
5.3 |
MEDIUM
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to `dlpack.to_dlpack` the expected validations will cause variables to bind to `nullptr` while setting a `status` v…
|
CWE-252
Unchecked Return Value
|
CVE-2020-15191
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210060
|
5.3 |
MEDIUM
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `tf.raw_ops.Switch` operation takes as input a tensor and a boolean and outputs two tensors. Depending on the boolean value, o…
|
-
|
CVE-2020-15190
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
