Lucene search
China National Vulnerability DatabaseCNVD-2023-07751HistoryNov 23, 2022 - 12:00 a.m.
Google TensorFlow MirrorPadGrad buffer overflow vulnerability
2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
google tensorflow
mirrorpadgrad
buffer overflow
vulnerability
heap memory
out-of-bounds
cnvd
0.001 Low
EPSS
Percentile
43.6%
Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A buffer overflow vulnerability exists in Google TensorFlow, which originates from the “MirrorPadGrad” input “paddings” is too large, an attacker can use this vulnerability to cause a heap memory out-of-bounds.
| CPE | Name | Operator | Version |
|---|---|---|---|
| google tensorflow | lt | 2.8.4 | |
| google tensorflow >=2.9.0, | lt | 2.9.3 | |
| google tensorflow >=2.10.0, | lt | 2.10.1 |
Related
prion
prion
Design/Logic Flaw
2022-11-18 22:15:00
osv
osv
BIT-tensorflow-2022-41895
2024-03-06 11:10:55
`MirrorPadGrad` heap out of bounds read
2022-11-21 20:44:36
CVE-2022-41895
2022-11-18 22:15:18
cve
cve
CVE-2022-41895
2022-11-18 22:15:18
nvd
nvd
CVE-2022-41895
2022-11-18 22:15:18
veracode
veracode
Denial Of Service (DoS)
2022-11-22 08:14:51
cvelist
cvelist
CVE-2022-41895 `MirrorPadGrad` heap out of bounds read in Tensorflow
2022-11-18 00:00:00
nessus
nessus
CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41895)
2023-03-20 00:00:00
TensorFlow < 2.9.3 Multiple Vulnerabilities
2024-05-24 00:00:00
TensorFlow < 2.10.1 Multiple Vulnerabilities
2024-05-20 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-41895 affecting package tensorflow for versions less than 2.11.0-1
2022-12-09 20:03:11
github
github
`MirrorPadGrad` heap out of bounds read
2022-11-21 20:44:36
