Lucene search
China National Vulnerability DatabaseCNVD-2021-63084HistoryAug 13, 2021 - 12:00 a.m.
Google TensorFlow arbitrary code execution vulnerability
2021-08-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
19
google
tensorflow
arbitrary code execution
yaml deserialization
EPSS
0
Percentile
12.6%
Google TensorFlow, an end-to-end open source machine learning platform, is vulnerable to arbitrary code execution in versions prior to Google TensorFlow 2.6.0. The vulnerability stems from YAML deserialization. An attacker could exploit this vulnerability to execute arbitrary code.
Related
cvelist
cvelist
CVE-2021-37678 Arbitrary code execution due to YAML deserialization
2021-08-12 23:05:10
cve
cve
CVE-2021-37678
2021-08-12 23:15:08
osv
osv
CVE-2021-37678
2021-08-12 23:15:08
BIT-tensorflow-2021-37678
2024-03-06 11:16:58
Arbitrary code execution due to YAML deserialization
2021-08-25 14:41:12
githubexploit
githubexploit
Exploit for Deserialization of Untrusted Data in Google Tensorflow
2021-09-09 12:55:55
prion
prion
Buffer overflow
2021-08-12 23:15:00
nvd
nvd
CVE-2021-37678
2021-08-12 23:15:08
github
github
Arbitrary code execution due to YAML deserialization
2021-08-25 14:41:12
suse
suse
Security update for tensorflow2 (moderate)
2022-06-18 00:00:00
nessus
nessus
openSUSE 15 Security Update : tensorflow2 (openSUSE-SU-2022:10014-1)
2022-06-19 00:00:00