|
212491
|
4.8 |
MEDIUM
Network
|
google
|
tensorflow
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the …
|
CWE-787
Out-of-bounds Write
|
CVE-2020-15201
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212492
|
5.9 |
MEDIUM
Network
|
google
|
tensorflow
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the …
|
CWE-787
Out-of-bounds Write
|
CVE-2020-15200
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212493
|
5.9 |
MEDIUM
Network
|
google
|
tensorflow
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the `splits` tensor…
|
CWE-20
Improper Input Validation
|
CVE-2020-15199
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212494
|
5.4 |
MEDIUM
Network
|
google
|
tensorflow
|
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-15198
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212495
|
6.3 |
MEDIUM
Network
|
google
|
tensorflow
|
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the …
|
-
|
CVE-2020-15197
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212496
|
9.9 |
CRITICAL
Network
|
google
|
tensorflow
|
In Tensorflow version 2.3.0, the `SparseCountSparseOutput` and `RaggedCountSparseOutput` implementations don't validate that the `weights` tensor has the same shape as the data. The check exists for …
|
CWE-125
Out-of-bounds Read
|
CVE-2020-15196
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212497
|
5.3 |
MEDIUM
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `SparseFillEmptyRowsGrad` implementation has incomplete validation of the shapes of its arguments. Although `reverse_index_map…
|
-
|
CVE-2020-15194
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212498
|
7.1 |
HIGH
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 2.2.1 and 2.3.1, the implementation of `dlpack.to_dlpack` can be made to use uninitialized memory resulting in further memory corruption. This is because the pybind11 gl…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2020-15193
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212499
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes a list of strings to `dlpack.to_dlpack` there is a memory leak following an expected validation failure. The issue occurs because the `…
|
CWE-20
Improper Input Validation
|
CVE-2020-15192
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212500
|
5.3 |
MEDIUM
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to `dlpack.to_dlpack` the expected validations will cause variables to bind to `nullptr` while setting a `status` v…
|
CWE-252
Unchecked Return Value
|
CVE-2020-15191
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
