CyberSec.Space Logo
Back to CVE Browser

CVE-2018-7575

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1260%
EPSS Percentile26.80th
PublishedApr 24, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

Google TensorFlow 1.7.x and earlier is affected by a Buffer Overflow vulnerability. The type of exploitation is context-dependent.

Affected Platforms (CPE)

📦
Google

Tensorflow

<= 1.7.0

References & Advisories

🔗 https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-004.md
🔗 https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-004.md

Related Vulnerabilities

CVE-2021-376789.3

TensorFlow is an end-to-end open source platform for machine learning. In affected versions TensorFlow and Keras can be tricked to...

CVE-2021-359589.1

TensorFlow through 2.5.0 allows attackers to overwrite arbitrary files via a crafted archive when tf.keras.utils.get_file is used ...

CVE-2020-152059.0

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `data_splits` argument of `tf.raw_ops.StringNGrams` lacks...

CVE-2020-152029.0

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `Shard` API in TensorFlow expects the last argument to be...