Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/tensorflow-cpu@2.5.0
purl pkg:pypi/tensorflow-cpu@2.5.0
Next non-vulnerable version 2.6.0rc2
Latest non-vulnerable version 2.12.1
Risk
Vulnerabilities affecting this package (141)
Vulnerability Summary Fixed by
VCID-11qd-d7c7-sbdm
Aliases:
CVE-2022-21731
GHSA-m4hf-j54p-p353
PYSEC-2022-110
PYSEC-2022-55
Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `ConcatV2` can be used to trigger a denial of service attack via a segfault caused by a type confusion. The `axis` argument is translated into `concat_dim` in the `ConcatShapeHelper` helper function. Then, a value for `min_rank` is computed based on `concat_dim`. This is then used to validate that the `values` tensor has at least the required rank. However, `WithRankAtLeast` receives the lower bound as a 64-bits value and then compares it against the maximum 32-bits integer value that could be represented. Due to the fact that `min_rank` is a 32-bits value and the value of `axis`, the `rank` argument is a negative value, so the error check is bypassed. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-145d-k5w3-tfgz
Aliases:
CVE-2022-23567
GHSA-rrx2-r989-2c43
PYSEC-2022-131
PYSEC-2022-76
Tensorflow is an Open Source Machine Learning Framework. The implementations of `Sparse*Cwise*` ops are vulnerable to integer overflows. These can be used to trigger large allocations (so, OOM based denial of service) or `CHECK`-fails when building new `TensorShape` objects (so, assert failures based denial of service). We are missing some validation on the shapes of the input tensors as well as directly constructing a large `TensorShape` with user-provided dimensions. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-15nt-6tff-k7gb
Aliases:
CVE-2022-23587
GHSA-8jj7-5vxc-pg2q
PYSEC-2022-151
PYSEC-2022-96
Tensorflow is an Open Source Machine Learning Framework. Under certain scenarios, Grappler component of TensorFlow is vulnerable to an integer overflow during cost estimation for crop and resize. Since the cropping parameters are user controlled, a malicious person can trigger undefined behavior. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-1ah5-hm7a-ykep
Aliases:
CVE-2022-21730
GHSA-vjg4-v33c-ggc4
PYSEC-2022-109
PYSEC-2022-54
Tensorflow is an Open Source Machine Learning Framework. The implementation of `FractionalAvgPoolGrad` does not consider cases where the input tensors are invalid allowing an attacker to read from outside of bounds of heap. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-1sr1-happ-6ugc
Aliases:
CVE-2021-41221
GHSA-cqv6-3phm-hcwx
PYSEC-2021-413
PYSEC-2021-630
PYSEC-2021-828
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-24nt-xz5z-nqdx
Aliases:
CVE-2021-37657
GHSA-5xwc-mrhx-5g3m
PYSEC-2021-279
PYSEC-2021-570
PYSEC-2021-768
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-2cw7-2xzs-abfz
Aliases:
CVE-2021-41217
GHSA-5crj-c72x-m7gq
PYSEC-2021-409
PYSEC-2021-626
PYSEC-2021-824
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-2hqc-3d51-4yf5
Aliases:
CVE-2021-41198
GHSA-2p25-55c9-h58q
PYSEC-2021-391
PYSEC-2021-608
PYSEC-2021-806
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-37p1-d12g-quf8
Aliases:
CVE-2021-37655
GHSA-7fvx-3jfc-2cpc
PYSEC-2021-277
PYSEC-2021-568
PYSEC-2021-766
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-3994-kqbn-67cn
Aliases:
CVE-2021-37679
GHSA-g8wg-cjwc-xhhp
PYSEC-2021-301
PYSEC-2021-592
PYSEC-2021-790
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-39ck-bm9t-kqhs
Aliases:
CVE-2022-23557
GHSA-gf2j-f278-xh4v
PYSEC-2022-121
PYSEC-2022-66
Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would trigger a division by zero in `BiasAndClamp` implementation. There is no check that the `bias_size` is non zero. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-3czq-3twf-skcg
Aliases:
CVE-2022-23573
GHSA-q85f-69q7-55h2
PYSEC-2022-137
PYSEC-2022-82
Tensorflow is an Open Source Machine Learning Framework. The implementation of `AssignOp` can result in copying uninitialized data to a new tensor. This later results in undefined behavior. The implementation has a check that the left hand side of the assignment is initialized (to minimize number of allocations), but does not check that the right hand side is also initialized. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-3g5a-5csn-h3d9
Aliases:
CVE-2022-23588
GHSA-fx5c-h9f6-rv7c
PYSEC-2022-152
PYSEC-2022-97
Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a `SavedModel` such that Grappler optimizer would attempt to build a tensor using a reference `dtype`. This would result in a crash due to a `CHECK`-fail in the `Tensor` constructor as reference types are not allowed. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-3ppf-jdk6-y3g8
Aliases:
CVE-2021-37662
GHSA-f5cx-5wr3-5qrc
PYSEC-2021-284
PYSEC-2021-575
PYSEC-2021-773
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-466y-e26r-rka4
Aliases:
CVE-2022-23595
GHSA-fpcp-9h7m-ffpx
PYSEC-2022-103
PYSEC-2022-158
Tensorflow is an Open Source Machine Learning Framework. When building an XLA compilation cache, if default settings are used, TensorFlow triggers a null pointer dereference. In the default scenario, all devices are allowed, so `flr->config_proto` is `nullptr`. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-4c8e-13wm-jyc6
Aliases:
CVE-2021-37671
GHSA-qr82-2c78-4m8h
PYSEC-2021-293
PYSEC-2021-584
PYSEC-2021-782
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-4fax-cv4q-9bb2
Aliases:
CVE-2021-37681
GHSA-7xwj-5r4v-429p
PYSEC-2021-303
PYSEC-2021-594
PYSEC-2021-792
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-55ry-uteb-7ke9
Aliases:
CVE-2021-37661
GHSA-gf88-j2mg-cc82
PYSEC-2021-283
PYSEC-2021-574
PYSEC-2021-772
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-58c5-tv8t-93fq
Aliases:
CVE-2021-37678
GHSA-r6jx-9g48-2r5r
PYSEC-2021-300
PYSEC-2021-591
PYSEC-2021-789
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-5d73-819a-xbeg
Aliases:
CVE-2021-41209
GHSA-6hpv-v2rx-c5g6
PYSEC-2021-401
PYSEC-2021-618
PYSEC-2021-816
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-5dj1-vz8t-ffeb
Aliases:
CVE-2021-37680
GHSA-cfpj-3q4c-jhvr
PYSEC-2021-302
PYSEC-2021-593
PYSEC-2021-791
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-5qyz-5xzb-zqc1
Aliases:
CVE-2021-37674
GHSA-7ghq-fvr3-pj2x
PYSEC-2021-296
PYSEC-2021-587
PYSEC-2021-785
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-5tpp-sf62-zycs
Aliases:
CVE-2022-23563
GHSA-wc4g-r73w-x8mm
PYSEC-2022-127
PYSEC-2022-72
Tensorflow is an Open Source Machine Learning Framework. In multiple places, TensorFlow uses `tempfile.mktemp` to create temporary files. While this is acceptable in testing, in utilities and libraries it is dangerous as a different process can create the file between the check for the filename in `mktemp` and the actual creation of the file by a subsequent operation (a TOC/TOU type of weakness). In several instances, TensorFlow was supposed to actually create a temporary directory instead of a file. This logic bug is hidden away by the `mktemp` function usage. We have patched the issue in several commits, replacing `mktemp` with the safer `mkstemp`/`mkdtemp` functions, according to the usage pattern. Users are advised to upgrade as soon as possible.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-5ty2-z944-mbht
Aliases:
CVE-2021-41214
GHSA-vwhq-49r4-gj9v
PYSEC-2021-406
PYSEC-2021-623
PYSEC-2021-821
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-5xgg-h9wh-3uh7
Aliases:
CVE-2021-41226
GHSA-374m-jm66-3vj8
PYSEC-2021-418
PYSEC-2021-635
PYSEC-2021-833
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-64j2-brru-xqfw
Aliases:
CVE-2021-37682
GHSA-4c4g-crqm-xrxw
PYSEC-2021-304
PYSEC-2021-595
PYSEC-2021-793
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-6888-uhtp-8ub6
Aliases:
CVE-2022-21737
GHSA-f2vv-v9cg-qhh7
PYSEC-2022-116
PYSEC-2022-61
Tensorflow is an Open Source Machine Learning Framework. The implementation of `*Bincount` operations allows malicious users to cause denial of service by passing in arguments which would trigger a `CHECK`-fail. There are several conditions that the input arguments must satisfy. Some are not caught during shape inference and others are not caught during kernel implementation. This results in `CHECK` failures later when the output tensors get allocated. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-688g-g33x-67g9
Aliases:
CVE-2021-41223
GHSA-f54p-f6jp-4rhr
PYSEC-2021-415
PYSEC-2021-632
PYSEC-2021-830
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-6ebn-m9rw-7ya7
Aliases:
CVE-2021-37647
GHSA-c5x2-p679-95wc
PYSEC-2021-269
PYSEC-2021-560
PYSEC-2021-758
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-6gnj-az99-h7b4
Aliases:
CVE-2022-21735
GHSA-87v6-crgm-2gfj
PYSEC-2022-114
PYSEC-2022-59
Tensorflow is an Open Source Machine Learning Framework. The implementation of `FractionalMaxPool` can be made to crash a TensorFlow process via a division by 0. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-6sab-b21w-9kc9
Aliases:
CVE-2021-37638
GHSA-hwr7-8gxx-fj5p
PYSEC-2021-260
PYSEC-2021-551
PYSEC-2021-749
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-6wkx-ycyz-1qhd
Aliases:
CVE-2021-37665
GHSA-v82p-hv3v-p6qp
PYSEC-2021-287
PYSEC-2021-578
PYSEC-2021-776
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-7wsk-p6nu-7fa5
Aliases:
CVE-2021-37636
GHSA-hp4c-x6r7-6555
PYSEC-2021-258
PYSEC-2021-549
PYSEC-2021-747
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-81sp-dd4z-2khc
Aliases:
CVE-2021-37670
GHSA-9697-98pf-4rw7
PYSEC-2021-292
PYSEC-2021-583
PYSEC-2021-781
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-83pe-ztey-dbf4
Aliases:
CVE-2022-23569
GHSA-qj5r-f9mv-rffh
PYSEC-2022-133
PYSEC-2022-78
Tensorflow is an Open Source Machine Learning Framework. Multiple operations in TensorFlow can be used to trigger a denial of service via `CHECK`-fails (i.e., assertion failures). This is similar to TFSA-2021-198 and has similar fixes. We have patched the reported issues in multiple GitHub commits. It is possible that other similar instances exist in TensorFlow, we will issue fixes as these are discovered. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-87bh-depq-8fdm
Aliases:
CVE-2021-37648
GHSA-wp77-4gmm-7cq8
PYSEC-2021-270
PYSEC-2021-561
PYSEC-2021-759
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-8k4s-zwck-fkg4
Aliases:
CVE-2021-37675
GHSA-9c8h-2mv3-49ww
PYSEC-2021-297
PYSEC-2021-588
PYSEC-2021-786
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-8qh6-fg49-u3b2
Aliases:
CVE-2021-37660
GHSA-cm5x-837x-jf3c
PYSEC-2021-282
PYSEC-2021-573
PYSEC-2021-771
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-97cs-4kx3-37gm
Aliases:
CVE-2022-21733
GHSA-98j8-c9q4-r38g
PYSEC-2022-112
PYSEC-2022-57
Tensorflow is an Open Source Machine Learning Framework. The implementation of `StringNGrams` can be used to trigger a denial of service attack by causing an out of memory condition after an integer overflow. We are missing a validation on `pad_witdh` and that result in computing a negative value for `ngram_width` which is later used to allocate parts of the output. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-9arh-a8wj-wka6
Aliases:
CVE-2022-21734
GHSA-gcvh-66ff-4mwm
PYSEC-2022-113
PYSEC-2022-58
Tensorflow is an Open Source Machine Learning Framework. The implementation of `MapStage` is vulnerable a `CHECK`-fail if the key tensor is not a scalar. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-9dhc-1f13-5qht
Aliases:
CVE-2021-41219
GHSA-4f99-p9c2-3j8x
PYSEC-2021-411
PYSEC-2021-628
PYSEC-2021-826
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-9faa-mq8t-z7c1
Aliases:
CVE-2021-37651
GHSA-hpv4-7p9c-mvfr
PYSEC-2021-273
PYSEC-2021-564
PYSEC-2021-762
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-9gde-ga9q-pqb4
Aliases:
CVE-2021-41207
GHSA-7v94-64hj-m82h
PYSEC-2021-399
PYSEC-2021-616
PYSEC-2021-814
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-9snf-qxka-83hd
Aliases:
CVE-2021-41204
GHSA-786j-5qwq-r36x
PYSEC-2021-397
PYSEC-2021-614
PYSEC-2021-812
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-aad5-dg9x-53cz
Aliases:
CVE-2021-41199
GHSA-5hx2-qx8j-qjqm
PYSEC-2021-392
PYSEC-2021-609
PYSEC-2021-807
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-akmu-fas1-33h6
Aliases:
CVE-2022-21741
GHSA-428x-9xc2-m8mj
PYSEC-2022-120
PYSEC-2022-65
Tensorflow is an Open Source Machine Learning Framework. ### Impact An attacker can craft a TFLite model that would trigger a division by zero in the implementation of depthwise convolutions. The parameters of the convolution can be user controlled and are also used within a division operation to determine the size of the padding that needs to be added before applying the convolution. There is no check before this division that the divisor is strictly positive. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-axj7-aq9m-rqdu
Aliases:
CVE-2022-23571
GHSA-j3mj-fhpq-qqjj
PYSEC-2022-135
PYSEC-2022-80
Tensorflow is an Open Source Machine Learning Framework. When decoding a tensor from protobuf, a TensorFlow process can encounter cases where a `CHECK` assertion is invalidated based on user controlled arguments, if the tensors have an invalid `dtype` and 0 elements or an invalid shape. This allows attackers to cause denial of services in TensorFlow processes. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-b8sr-erwh-5yh8
Aliases:
CVE-2021-41228
GHSA-3rcw-9p9x-582v
PYSEC-2021-420
PYSEC-2021-637
PYSEC-2021-835
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-bcub-rasm-nbbq
Aliases:
CVE-2021-37639
GHSA-gh6x-4whr-2qv4
PYSEC-2021-261
PYSEC-2021-552
PYSEC-2021-750
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-bm3u-2ych-eqac
Aliases:
CVE-2021-41227
GHSA-j8c8-67vp-6mx7
PYSEC-2021-419
PYSEC-2021-636
PYSEC-2021-834
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-bzfw-bhxx-b7df
Aliases:
CVE-2021-37658
GHSA-6p5r-g9mq-ggh2
PYSEC-2021-280
PYSEC-2021-571
PYSEC-2021-769
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-bzsf-bjda-3ber
Aliases:
CVE-2021-37649
GHSA-6gv8-p3vj-pxvr
PYSEC-2021-271
PYSEC-2021-562
PYSEC-2021-760
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-ccv1-pgda-r7ba
Aliases:
CVE-2022-23566
GHSA-5qw5-89mw-wcg2
PYSEC-2022-130
PYSEC-2022-75
Tensorflow is an Open Source Machine Learning Framework. TensorFlow is vulnerable to a heap OOB write in `Grappler`. The `set_output` function writes to an array at the specified index. Hence, this gives a malicious user a write primitive. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-cggq-9awk-3qfm
Aliases:
CVE-2021-37688
GHSA-vcjj-9vg7-vf68
PYSEC-2021-310
PYSEC-2021-601
PYSEC-2021-799
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-cu5c-pmqv-xkdz
Aliases:
CVE-2021-41200
GHSA-gh8h-7j2j-qv4f
PYSEC-2021-393
PYSEC-2021-610
PYSEC-2021-808
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-cwvm-wntu-tfck
Aliases:
CVE-2022-23579
GHSA-5f2r-qp73-37mr
PYSEC-2022-143
PYSEC-2022-88
Tensorflow is an Open Source Machine Learning Framework. The Grappler optimizer in TensorFlow can be used to cause a denial of service by altering a `SavedModel` such that `SafeToRemoveIdentity` would trigger `CHECK` failures. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-cyk5-z76t-9bgc
Aliases:
CVE-2021-37667
GHSA-w74j-v8xh-3w5h
PYSEC-2021-289
PYSEC-2021-580
PYSEC-2021-778
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-d3dc-su6w-s3ag
Aliases:
CVE-2022-21726
GHSA-23hm-7w47-xw72
PYSEC-2022-105
PYSEC-2022-50
Tensorflow is an Open Source Machine Learning Framework. The implementation of `Dequantize` does not fully validate the value of `axis` and can result in heap OOB accesses. The `axis` argument can be `-1` (the default value for the optional argument) or any other positive value at most the number of dimensions of the input. Unfortunately, the upper bound is not checked and this results in reading past the end of the array containing the dimensions of the input tensor. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-ddf8-mugz-pbbk
Aliases:
CVE-2021-37644
GHSA-27j5-4p9v-pp67
PYSEC-2021-266
PYSEC-2021-557
PYSEC-2021-755
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-egc6-6pwr-fyej
Aliases:
CVE-2022-23577
GHSA-8cxv-76p7-jxwr
PYSEC-2022-141
PYSEC-2022-86
Tensorflow is an Open Source Machine Learning Framework. The implementation of `GetInitOp` is vulnerable to a crash caused by dereferencing a null pointer. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-en5f-xtha-cyhp
Aliases:
CVE-2022-23586
GHSA-43jf-985q-588j
PYSEC-2022-150
PYSEC-2022-95
Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a `SavedModel` such that assertions in `function.cc` would be falsified and crash the Python interpreter. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-ev23-kazv-nkas
Aliases:
CVE-2022-23575
GHSA-c94w-c95p-phf8
PYSEC-2022-139
PYSEC-2022-84
Tensorflow is an Open Source Machine Learning Framework. The implementation of `OpLevelCostEstimator::CalculateTensorSize` is vulnerable to an integer overflow if an attacker can create an operation which would involve a tensor with large enough number of elements. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-ev84-gxjn-6bf1
Aliases:
CVE-2022-21727
GHSA-c6fh-56w7-fvjw
PYSEC-2022-106
PYSEC-2022-51
Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `Dequantize` is vulnerable to an integer overflow weakness. The `axis` argument can be `-1` (the default value for the optional argument) or any other positive value at most the number of dimensions of the input. Unfortunately, the upper bound is not checked, and, since the code computes `axis + 1`, an attacker can trigger an integer overflow. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-exm3-hpp6-g7hg
Aliases:
CVE-2021-41205
GHSA-49rx-x2rw-pc6f
PYSEC-2021-398
PYSEC-2021-615
PYSEC-2021-813
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-eyqx-7k24-zfhq
Aliases:
CVE-2022-21738
GHSA-x4qx-4fjv-hmw6
PYSEC-2022-117
PYSEC-2022-62
Tensorflow is an Open Source Machine Learning Framework. The implementation of `SparseCountSparseOutput` can be made to crash a TensorFlow process by an integer overflow whose result is then used in a memory allocation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-f25m-udat-n3fd
Aliases:
CVE-2022-23562
GHSA-qx3f-p745-w4hr
PYSEC-2022-126
PYSEC-2022-71
Tensorflow is an Open Source Machine Learning Framework. The implementation of `Range` suffers from integer overflows. These can trigger undefined behavior or, in some scenarios, extremely large allocations. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-f3cx-k63z-7qde
Aliases:
CVE-2022-23559
GHSA-98p5-x8x4-c9m5
PYSEC-2022-123
PYSEC-2022-68
Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause an integer overflow in embedding lookup operations. Both `embedding_size` and `lookup_size` are products of values provided by the user. Hence, a malicious user could trigger overflows in the multiplication. In certain scenarios, this can then result in heap OOB read/write. Users are advised to upgrade to a patched version.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-fggx-3rzd-8kf5
Aliases:
CVE-2022-23585
GHSA-fq6p-6334-8gr4
PYSEC-2022-149
PYSEC-2022-94
Tensorflow is an Open Source Machine Learning Framework. When decoding PNG images TensorFlow can produce a memory leak if the image is invalid. After calling `png::CommonInitDecode(..., &decode)`, the `decode` value contains allocated buffers which can only be freed by calling `png::CommonFreeDecode(&decode)`. However, several error case in the function implementation invoke the `OP_REQUIRES` macro which immediately terminates the execution of the function, without allowing for the memory free to occur. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-fhfh-ryxe-67ha
Aliases:
CVE-2021-37664
GHSA-r4c4-5fpq-56wg
PYSEC-2021-286
PYSEC-2021-577
PYSEC-2021-775
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-g144-4yvx-xybr
Aliases:
CVE-2021-41202
GHSA-xrqm-fpgr-6hhx
PYSEC-2021-395
PYSEC-2021-612
PYSEC-2021-810
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-g423-bnfj-kybz
Aliases:
CVE-2021-41224
GHSA-rg3m-hqc5-344v
PYSEC-2021-416
PYSEC-2021-633
PYSEC-2021-831
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-g4y6-tura-gbhx
Aliases:
CVE-2021-37653
GHSA-qjj8-32p7-h289
PYSEC-2021-275
PYSEC-2021-566
PYSEC-2021-764
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-g8er-52ns-j7b1
Aliases:
CVE-2022-21728
GHSA-6gmv-pjp9-p8w8
PYSEC-2022-107
PYSEC-2022-52
Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `ReverseSequence` does not fully validate the value of `batch_dim` and can result in a heap OOB read. There is a check to make sure the value of `batch_dim` does not go over the rank of the input, but there is no check for negative values. Negative dimensions are allowed in some cases to mimic Python's negative indexing (i.e., indexing from the end of the array), however if the value is too negative then the implementation of `Dim` would access elements before the start of an array. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-g8ts-ghhv-33e3
Aliases:
CVE-2022-23580
GHSA-627q-g293-49q7
PYSEC-2022-144
PYSEC-2022-89
Tensorflow is an Open Source Machine Learning Framework. During shape inference, TensorFlow can allocate a large vector based on a value from a tensor controlled by the user. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-gbft-tx74-wkhf
Aliases:
CVE-2021-41210
GHSA-m342-ff57-4jcc
PYSEC-2021-402
PYSEC-2021-619
PYSEC-2021-817
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-gg52-vvcd-zben
Aliases:
CVE-2021-37691
GHSA-27qf-jwm8-g7f3
PYSEC-2021-313
PYSEC-2021-604
PYSEC-2021-802
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-gg98-zkw8-5ben
Aliases:
CVE-2022-21725
GHSA-v3f7-j968-4h5f
PYSEC-2022-104
PYSEC-2022-49
Tensorflow is an Open Source Machine Learning Framework. The estimator for the cost of some convolution operations can be made to execute a division by 0. The function fails to check that the stride argument is strictly positive. Hence, the fix is to add a check for the stride argument to ensure it is valid. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-gm34-n1kp-5qh4
Aliases:
CVE-2021-37652
GHSA-m7fm-4jfh-jrg6
PYSEC-2021-274
PYSEC-2021-565
PYSEC-2021-763
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-gvws-rve9-nbat
Aliases:
CVE-2021-37642
GHSA-ch4f-829c-v5pw
PYSEC-2021-264
PYSEC-2021-555
PYSEC-2021-753
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-hfhh-k29v-1kaf
Aliases:
CVE-2021-37683
GHSA-rhrq-64mq-hf9h
PYSEC-2021-305
PYSEC-2021-596
PYSEC-2021-794
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-hk2y-fdnq-ybf1
Aliases:
CVE-2021-37690
GHSA-3hxh-8cp2-g4hg
PYSEC-2021-312
PYSEC-2021-603
PYSEC-2021-801
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-hpt6-maej-a3fb
Aliases:
CVE-2021-37654
GHSA-2r8p-fg3c-wcj4
PYSEC-2021-276
PYSEC-2021-567
PYSEC-2021-765
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-hujj-6vv2-u3c2
Aliases:
CVE-2022-23583
GHSA-gjqc-q9g6-q2j3
PYSEC-2022-147
PYSEC-2022-92
Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a `SavedModel` such that any binary op would trigger `CHECK` failures. This occurs when the protobuf part corresponding to the tensor arguments is modified such that the `dtype` no longer matches the `dtype` expected by the op. In that case, calling the templated binary operator for the binary op would receive corrupted data, due to the type confusion involved. If `Tin` and `Tout` don't match the type of data in `out` and `input_*` tensors then `flat<*>` would interpret it wrongly. In most cases, this would be a silent failure, but we have noticed scenarios where this results in a `CHECK` crash, hence a denial of service. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-jdud-ufqp-4yg5
Aliases:
CVE-2022-23591
GHSA-247x-2f9f-5wp7
PYSEC-2022-100
PYSEC-2022-155
Tensorflow is an Open Source Machine Learning Framework. The `GraphDef` format in TensorFlow does not allow self recursive functions. The runtime assumes that this invariant is satisfied. However, a `GraphDef` containing a fragment such as the following can be consumed when loading a `SavedModel`. This would result in a stack overflow during execution as resolving each `NodeDef` means resolving the function itself and its nodes. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-k149-grwj-cyg5
Aliases:
CVE-2021-37635
GHSA-cgfm-62j4-v4rf
PYSEC-2021-257
PYSEC-2021-548
PYSEC-2021-746
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-kta3-2zcq-83ch
Aliases:
CVE-2021-37684
GHSA-q7f7-544h-67h9
PYSEC-2021-306
PYSEC-2021-597
PYSEC-2021-795
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-kupu-frrt-pqen
Aliases:
CVE-2021-41216
GHSA-3ff2-r28g-w7h9
PYSEC-2021-408
PYSEC-2021-625
PYSEC-2021-823
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-kuxe-7hab-a3cv
Aliases:
CVE-2021-37666
GHSA-w4xf-2pqw-5mq7
PYSEC-2021-288
PYSEC-2021-579
PYSEC-2021-777
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-ky4u-eny7-33fy
Aliases:
CVE-2022-21729
GHSA-34f9-hjfq-rr8j
PYSEC-2022-108
PYSEC-2022-53
Tensorflow is an Open Source Machine Learning Framework. The implementation of `UnravelIndex` is vulnerable to a division by zero caused by an integer overflow bug. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-m4na-tgrp-d7fk
Aliases:
CVE-2022-23576
GHSA-wm93-f238-7v37
PYSEC-2022-140
PYSEC-2022-85
Tensorflow is an Open Source Machine Learning Framework. The implementation of `OpLevelCostEstimator::CalculateOutputSize` is vulnerable to an integer overflow if an attacker can create an operation which would involve tensors with large enough number of elements. We can have a large enough number of dimensions in `output_shape.dim()` or just a small number of dimensions being large enough to cause an overflow in the multiplication. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-m5yn-gjpw-53b5
Aliases:
CVE-2021-37689
GHSA-wf5p-c75w-w3wh
PYSEC-2021-311
PYSEC-2021-602
PYSEC-2021-800
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-mh7p-x5et-67h4
Aliases:
CVE-2021-37637
GHSA-c9qf-r67m-p7cg
PYSEC-2021-259
PYSEC-2021-550
PYSEC-2021-748
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-mt3j-jwu5-pueu
Aliases:
CVE-2021-37685
GHSA-c545-c4f9-rf6v
PYSEC-2021-307
PYSEC-2021-598
PYSEC-2021-796
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-mtqg-yga8-eqeu
Aliases:
CVE-2022-23581
GHSA-fq86-3f29-px2c
PYSEC-2022-145
PYSEC-2022-90
Tensorflow is an Open Source Machine Learning Framework. The Grappler optimizer in TensorFlow can be used to cause a denial of service by altering a `SavedModel` such that `IsSimplifiableReshape` would trigger `CHECK` failures. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-myjm-gbbc-qucg
Aliases:
CVE-2021-41203
GHSA-7pxj-m4jf-r6h2
PYSEC-2021-396
PYSEC-2021-613
PYSEC-2021-811
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-n62z-1akp-ebck
Aliases:
CVE-2022-23584
GHSA-24x4-6qmh-88qg
PYSEC-2022-148
PYSEC-2022-93
Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a use after free behavior when decoding PNG images. After `png::CommonFreeDecode(&decode)` gets called, the values of `decode.width` and `decode.height` are in an unspecified state. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-nfr9-fgdn-4kh8
Aliases:
CVE-2021-41222
GHSA-cpf4-wx82-gxp6
PYSEC-2021-414
PYSEC-2021-631
PYSEC-2021-829
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-ngkq-s26c-qkfj
Aliases:
CVE-2022-23589
GHSA-9px9-73fg-3fqp
PYSEC-2022-153
PYSEC-2022-98
Tensorflow is an Open Source Machine Learning Framework. Under certain scenarios, Grappler component of TensorFlow can trigger a null pointer dereference. There are 2 places where this can occur, for the same malicious alteration of a `SavedModel` file (fixing the first one would trigger the same dereference in the second place). First, during constant folding, the `GraphDef` might not have the required nodes for the binary operation. If a node is missing, the correposning `mul_*child` would be null, and the dereference in the subsequent line would be incorrect. We have a similar issue during `IsIdentityConsumingSwitch`. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-ngsv-ca8h-q7bg
Aliases:
CVE-2021-37645
GHSA-9w2p-5mgw-p94c
PYSEC-2021-267
PYSEC-2021-558
PYSEC-2021-756
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-nhv1-35p3-tyfq
Aliases:
CVE-2021-37641
GHSA-9c8h-vvrj-w2p8
PYSEC-2021-263
PYSEC-2021-554
PYSEC-2021-752
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-ntth-8qpp-jfet
Aliases:
CVE-2021-37673
GHSA-278g-rq84-9hmg
PYSEC-2021-295
PYSEC-2021-586
PYSEC-2021-784
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-pe9p-a7nn-8bhj
Aliases:
CVE-2022-23582
GHSA-4j82-5ccr-4r8v
PYSEC-2022-146
PYSEC-2022-91
Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a `SavedModel` such that `TensorByteSize` would trigger `CHECK` failures. `TensorShape` constructor throws a `CHECK`-fail if shape is partial or has a number of elements that would overflow the size of an `int`. The `PartialTensorShape` constructor instead does not cause a `CHECK`-abort if the shape is partial, which is exactly what this function needs to be able to return `-1`. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-q4zv-syab-bbh8
Aliases:
CVE-2022-23558
GHSA-9gwq-6cwj-47h3
PYSEC-2022-122
PYSEC-2022-67
Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause an integer overflow in `TfLiteIntArrayCreate`. The `TfLiteIntArrayGetSizeInBytes` returns an `int` instead of a `size_t. An attacker can control model inputs such that `computed_size` overflows the size of `int` datatype. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-qa9p-g79v-fbe1
Aliases:
CVE-2021-37650
GHSA-f8h4-7rgh-q2gm
PYSEC-2021-272
PYSEC-2021-563
PYSEC-2021-761
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-qdnt-cg25-5kdx
Aliases:
CVE-2021-41197
GHSA-prcg-wp5q-rv7p
PYSEC-2021-390
PYSEC-2021-607
PYSEC-2021-805
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-qgr6-bqrc-puhs
Aliases:
CVE-2022-23560
GHSA-4hvf-hxvg-f67v
PYSEC-2022-124
PYSEC-2022-69
Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would allow limited reads and writes outside of arrays in TFLite. This exploits missing validation in the conversion from sparse tensors to dense tensors. The fix is included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range. Users are advised to upgrade as soon as possible.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-quc8-whc2-cbg7
Aliases:
CVE-2021-37687
GHSA-jwf9-w5xm-f437
PYSEC-2021-309
PYSEC-2021-600
PYSEC-2021-798
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-qvnc-gzf6-y3f3
Aliases:
CVE-2021-41196
GHSA-m539-j985-hcr8
PYSEC-2021-389
PYSEC-2021-606
PYSEC-2021-804
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-qxqd-f1bw-y7h4
Aliases:
CVE-2022-21732
GHSA-c582-c96p-r5cq
PYSEC-2022-111
PYSEC-2022-56
Tensorflow is an Open Source Machine Learning Framework. The implementation of `ThreadPoolHandle` can be used to trigger a denial of service attack by allocating too much memory. This is because the `num_threads` argument is only checked to not be negative, but there is no upper bound on its value. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-rkx2-5nyj-bbhu
Aliases:
CVE-2021-41218
GHSA-9crf-c6qr-r273
PYSEC-2021-410
PYSEC-2021-627
PYSEC-2021-825
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-rr2a-8jrx-6ue8
Aliases:
CVE-2021-41213
GHSA-h67m-xg8f-fxcf
PYSEC-2021-405
PYSEC-2021-622
PYSEC-2021-820
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-rsau-jvcr-uudd
Aliases:
CVE-2022-21736
GHSA-pfjj-m3jj-9jc9
PYSEC-2022-115
PYSEC-2022-60
Tensorflow is an Open Source Machine Learning Framework. The implementation of `SparseTensorSliceDataset` has an undefined behavior: under certain condition it can be made to dereference a `nullptr` value. The 3 input arguments to `SparseTensorSliceDataset` represent a sparse tensor. However, there are some preconditions that these arguments must satisfy but these are not validated in the implementation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-rt4b-xxm6-xubs
Aliases:
CVE-2022-23590
GHSA-pqrv-8r2f-7278
PYSEC-2022-154
PYSEC-2022-99
Tensorflow is an Open Source Machine Learning Framework. A `GraphDef` from a TensorFlow `SavedModel` can be maliciously altered to cause a TensorFlow process to crash due to encountering a `StatusOr` value that is an error and forcibly extracting the value from it. We have patched the issue in multiple GitHub commits and these will be included in TensorFlow 2.8.0 and TensorFlow 2.7.1, as both are affected.
2.7.1
Affected by 2 other vulnerabilities.
VCID-rujq-67w1-u3g7
Aliases:
CVE-2021-41225
GHSA-7r94-xv9v-63jw
PYSEC-2021-417
PYSEC-2021-634
PYSEC-2021-832
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-sb7m-pngm-5fbj
Aliases:
CVE-2021-41215
GHSA-x3v8-c8qx-3j3r
PYSEC-2021-407
PYSEC-2021-624
PYSEC-2021-822
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-sf59-u7jt-4bd5
Aliases:
CVE-2021-41206
GHSA-pgcq-h79j-2f69
PYSEC-2021-843
PYSEC-2021-845
PYSEC-2021-847
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
VCID-spbh-6rka-y3a8
Aliases:
CVE-2021-37643
GHSA-fcwc-p4fc-c5cc
PYSEC-2021-265
PYSEC-2021-556
PYSEC-2021-754
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-try6-1d3f-y3aq
Aliases:
CVE-2021-37663
GHSA-g25h-jr74-qp5j
PYSEC-2021-285
PYSEC-2021-576
PYSEC-2021-774
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-u597-6euj-auh5
Aliases:
CVE-2021-37646
GHSA-h6jh-7gv5-28vg
PYSEC-2021-268
PYSEC-2021-559
PYSEC-2021-757
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-ugta-nt2s-27fk
Aliases:
CVE-2022-23572
GHSA-rww7-2gpw-fv6j
PYSEC-2022-136
PYSEC-2022-81
Tensorflow is an Open Source Machine Learning Framework. Under certain scenarios, TensorFlow can fail to specialize a type during shape inference. This case is covered by the `DCHECK` function however, `DCHECK` is a no-op in production builds and an assertion failure in debug builds. In the first case execution proceeds to the `ValueOrDie` line. This results in an assertion failure as `ret` contains an error `Status`, not a value. In the second case we also get a crash due to the assertion failure. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, and TensorFlow 2.6.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-uy7w-xnc7-d7c5
Aliases:
CVE-2021-37676
GHSA-v768-w7m9-2vmm
PYSEC-2021-298
PYSEC-2021-589
PYSEC-2021-787
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-v2nf-1526-nkbp
Aliases:
CVE-2022-23565
GHSA-4v5p-v5h9-6xjx
PYSEC-2022-129
PYSEC-2022-74
Tensorflow is an Open Source Machine Learning Framework. An attacker can trigger denial of service via assertion failure by altering a `SavedModel` on disk such that `AttrDef`s of some operation are duplicated. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-v5em-3qqk-jqfs
Aliases:
CVE-2021-37640
GHSA-95xm-g58g-3p88
PYSEC-2021-262
PYSEC-2021-553
PYSEC-2021-751
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-vfgz-fss4-wbgu
Aliases:
CVE-2022-23574
GHSA-77gp-3h4r-6428
PYSEC-2022-138
PYSEC-2022-83
Tensorflow is an Open Source Machine Learning Framework. There is a typo in TensorFlow's `SpecializeType` which results in heap OOB read/write. Due to a typo, `arg` is initialized to the `i`th mutable argument in a loop where the loop index is `j`. Hence it is possible to assign to `arg` from outside the vector of arguments. Since this is a mutable proto value, it allows both read and write to outside of bounds data. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, and TensorFlow 2.6.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-vgv7-xc3c-1fb3
Aliases:
CVE-2022-23564
GHSA-8rcj-c8pj-v3m3
PYSEC-2022-128
PYSEC-2022-73
Tensorflow is an Open Source Machine Learning Framework. When decoding a resource handle tensor from protobuf, a TensorFlow process can encounter cases where a `CHECK` assertion is invalidated based on user controlled arguments. This allows attackers to cause denial of services in TensorFlow processes. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-vh5d-4p9r-wubf
Aliases:
CVE-2021-37669
GHSA-vmjw-c2vp-p33c
PYSEC-2021-291
PYSEC-2021-582
PYSEC-2021-780
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-vnn5-y8ez-rub9
Aliases:
CVE-2022-23568
GHSA-6445-fm66-fvq2
PYSEC-2022-132
PYSEC-2022-77
Tensorflow is an Open Source Machine Learning Framework. The implementation of `AddManySparseToTensorsMap` is vulnerable to an integer overflow which results in a `CHECK`-fail when building new `TensorShape` objects (so, an assert failure based denial of service). We are missing some validation on the shapes of the input tensors as well as directly constructing a large `TensorShape` with user-provided dimensions. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-vpyd-he5n-b3a4
Aliases:
CVE-2022-21739
GHSA-3mw4-6rj6-74g5
PYSEC-2022-118
PYSEC-2022-63
Tensorflow is an Open Source Machine Learning Framework. The implementation of `QuantizedMaxPool` has an undefined behavior where user controlled inputs can trigger a reference binding to null pointer. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-vqxg-mnz4-13cg
Aliases:
CVE-2022-23570
GHSA-9p77-mmrw-69c7
PYSEC-2022-134
PYSEC-2022-79
Tensorflow is an Open Source Machine Learning Framework. When decoding a tensor from protobuf, TensorFlow might do a null-dereference if attributes of some mutable arguments to some operations are missing from the proto. This is guarded by a `DCHECK`. However, `DCHECK` is a no-op in production builds and an assertion failure in debug builds. In the first case execution proceeds to the dereferencing of the null pointer, whereas in the second case it results in a crash due to the assertion failure. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, and TensorFlow 2.6.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-w2ns-kqmv-xfan
Aliases:
CVE-2021-41208
GHSA-57wx-m983-2f88
PYSEC-2021-400
PYSEC-2021-617
PYSEC-2021-815
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-wwwt-6qtg-mfb7
Aliases:
CVE-2021-37672
GHSA-5hj3-vjjf-f5m7
PYSEC-2021-294
PYSEC-2021-585
PYSEC-2021-783
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-x23c-1b8p-4qak
Aliases:
CVE-2021-37677
GHSA-qfpc-5pjr-mh26
PYSEC-2021-299
PYSEC-2021-590
PYSEC-2021-788
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-x2t2-4sa6-qygs
Aliases:
CVE-2022-23561
GHSA-9c78-vcq7-7vxq
PYSEC-2022-125
PYSEC-2022-70
Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause a write outside of bounds of an array in TFLite. In fact, the attacker can override the linked list used by the memory allocator. This can be leveraged for an arbitrary write primitive under certain conditions. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-x5x3-2cyz-xbhe
Aliases:
CVE-2022-23578
GHSA-8r7c-3cm2-3h8f
PYSEC-2022-142
PYSEC-2022-87
Tensorflow is an Open Source Machine Learning Framework. If a graph node is invalid, TensorFlow can leak memory in the implementation of `ImmutableExecutorState::Initialize`. Here, we set `item->kernel` to `nullptr` but it is a simple `OpKernel*` pointer so the memory that was previously allocated to it would leak. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-xbt8-r95u-sqbu
Aliases:
CVE-2021-41201
GHSA-j86v-p27c-73fm
PYSEC-2021-394
PYSEC-2021-611
PYSEC-2021-809
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-y191-8mqq-zqgk
Aliases:
CVE-2021-37668
GHSA-2wmv-37vq-52g5
PYSEC-2021-290
PYSEC-2021-581
PYSEC-2021-779
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-y7hx-h69v-wfcy
Aliases:
CVE-2021-41212
GHSA-fr77-rrx3-cp7g
PYSEC-2021-404
PYSEC-2021-621
PYSEC-2021-819
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
2.7.0
Affected by 82 other vulnerabilities.
VCID-yh43-ndzp-4ue9
Aliases:
CVE-2021-41195
GHSA-cq76-mxrc-vchh
PYSEC-2021-842
PYSEC-2021-844
PYSEC-2021-846
multiple issues
2.5.2
Affected by 53 other vulnerabilities.
2.6.1
Affected by 53 other vulnerabilities.
VCID-yvag-32h1-yfc5
Aliases:
CVE-2022-21740
GHSA-44qp-9wwf-734r
PYSEC-2022-119
PYSEC-2022-64
Tensorflow is an Open Source Machine Learning Framework. The implementation of `SparseCountSparseOutput` is vulnerable to a heap overflow. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
2.5.3
Affected by 1 other vulnerability.
2.6.3
Affected by 1 other vulnerability.
2.7.1
Affected by 2 other vulnerabilities.
VCID-z712-rg6q-t7bm
Aliases:
CVE-2021-37659
GHSA-q3g3-h9r4-prrc
PYSEC-2021-281
PYSEC-2021-572
PYSEC-2021-770
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
VCID-zky1-z6wv-37c5
Aliases:
CVE-2021-37656
GHSA-4xfp-4pfp-89wg
PYSEC-2021-278
PYSEC-2021-569
PYSEC-2021-767
multiple issues
2.5.1
Affected by 85 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-05-31T00:53:57.317642+00:00 GHSA Importer Affected by VCID-w2ns-kqmv-xfan https://github.com/advisories/GHSA-57wx-m983-2f88 38.6.0
2026-05-31T00:53:56.723909+00:00 GHSA Importer Affected by VCID-yh43-ndzp-4ue9 https://github.com/advisories/GHSA-cq76-mxrc-vchh 38.6.0
2026-05-30T20:56:15.727362+00:00 GitLab Importer Affected by VCID-w2ns-kqmv-xfan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41208.yml 38.6.0
2026-05-30T20:56:15.481001+00:00 GitLab Importer Affected by VCID-kupu-frrt-pqen https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41216.yml 38.6.0
2026-05-30T20:56:15.358757+00:00 GitLab Importer Affected by VCID-5ty2-z944-mbht https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41214.yml 38.6.0
2026-05-30T20:56:15.299846+00:00 GitLab Importer Affected by VCID-2cw7-2xzs-abfz https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41217.yml 38.6.0
2026-05-30T20:56:15.144218+00:00 GitLab Importer Affected by VCID-g144-4yvx-xybr https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41202.yml 38.6.0
2026-05-30T20:56:15.083024+00:00 GitLab Importer Affected by VCID-sf59-u7jt-4bd5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41206.yml 38.6.0
2026-05-30T20:56:14.867694+00:00 GitLab Importer Affected by VCID-cu5c-pmqv-xkdz https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41200.yml 38.6.0
2026-05-30T20:56:14.718834+00:00 GitLab Importer Affected by VCID-rkx2-5nyj-bbhu https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41218.yml 38.6.0
2026-05-30T20:56:14.462058+00:00 GitLab Importer Affected by VCID-xbt8-r95u-sqbu https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41201.yml 38.6.0
2026-05-30T20:56:14.277983+00:00 GitLab Importer Affected by VCID-688g-g33x-67g9 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41223.yml 38.6.0
2026-05-30T20:56:14.077954+00:00 GitLab Importer Affected by VCID-2hqc-3d51-4yf5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41198.yml 38.6.0
2026-05-30T20:56:14.013479+00:00 GitLab Importer Affected by VCID-rr2a-8jrx-6ue8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41213.yml 38.6.0
2026-05-30T20:56:13.951443+00:00 GitLab Importer Affected by VCID-yh43-ndzp-4ue9 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41195.yml 38.6.0
2026-05-30T20:56:13.644216+00:00 GitLab Importer Affected by VCID-rujq-67w1-u3g7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41225.yml 38.6.0
2026-05-30T20:56:13.474582+00:00 GitLab Importer Affected by VCID-qvnc-gzf6-y3f3 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41196.yml 38.6.0
2026-05-30T20:56:13.132339+00:00 GitLab Importer Affected by VCID-g423-bnfj-kybz https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41224.yml 38.6.0
2026-05-30T20:56:12.922603+00:00 GitLab Importer Affected by VCID-9snf-qxka-83hd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41204.yml 38.6.0
2026-05-30T20:56:12.798960+00:00 GitLab Importer Affected by VCID-gbft-tx74-wkhf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41210.yml 38.6.0
2026-05-30T20:56:12.118212+00:00 GitLab Importer Affected by VCID-qdnt-cg25-5kdx https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41197.yml 38.6.0
2026-05-30T20:56:11.819971+00:00 GitLab Importer Affected by VCID-nfr9-fgdn-4kh8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41222.yml 38.6.0
2026-05-30T20:56:11.761876+00:00 GitLab Importer Affected by VCID-sb7m-pngm-5fbj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41215.yml 38.6.0
2026-05-30T20:56:11.456570+00:00 GitLab Importer Affected by VCID-1sr1-happ-6ugc https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41221.yml 38.6.0
2026-05-30T20:56:11.328394+00:00 GitLab Importer Affected by VCID-b8sr-erwh-5yh8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41228.yml 38.6.0
2026-05-30T20:56:11.205466+00:00 GitLab Importer Affected by VCID-y7hx-h69v-wfcy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41212.yml 38.6.0
2026-05-30T20:56:10.507967+00:00 GitLab Importer Affected by VCID-bm3u-2ych-eqac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41227.yml 38.6.0
2026-05-30T20:56:10.377558+00:00 GitLab Importer Affected by VCID-aad5-dg9x-53cz https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41199.yml 38.6.0
2026-05-30T20:56:10.239194+00:00 GitLab Importer Affected by VCID-exm3-hpp6-g7hg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41205.yml 38.6.0
2026-05-30T20:56:09.853275+00:00 GitLab Importer Affected by VCID-5xgg-h9wh-3uh7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41226.yml 38.6.0
2026-05-30T20:56:09.631203+00:00 GitLab Importer Affected by VCID-9dhc-1f13-5qht https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41219.yml 38.6.0
2026-05-30T20:56:09.520624+00:00 GitLab Importer Affected by VCID-5d73-819a-xbeg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41209.yml 38.6.0
2026-05-30T20:56:09.410422+00:00 GitLab Importer Affected by VCID-9gde-ga9q-pqb4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41207.yml 38.6.0
2026-05-30T20:56:09.325340+00:00 GitLab Importer Affected by VCID-myjm-gbbc-qucg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-41203.yml 38.6.0
2026-05-30T20:55:44.716079+00:00 GitLab Importer Affected by VCID-bzfw-bhxx-b7df https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37658.yml 38.6.0
2026-05-30T20:55:44.648967+00:00 GitLab Importer Affected by VCID-4c8e-13wm-jyc6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37671.yml 38.6.0
2026-05-30T20:55:44.579820+00:00 GitLab Importer Affected by VCID-mt3j-jwu5-pueu https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37685.yml 38.6.0
2026-05-30T20:55:44.508580+00:00 GitLab Importer Affected by VCID-37p1-d12g-quf8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37655.yml 38.6.0
2026-05-30T20:55:44.366342+00:00 GitLab Importer Affected by VCID-hpt6-maej-a3fb https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37654.yml 38.6.0
2026-05-30T20:55:44.297666+00:00 GitLab Importer Affected by VCID-kta3-2zcq-83ch https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37684.yml 38.6.0
2026-05-30T20:55:43.968062+00:00 GitLab Importer Affected by VCID-u597-6euj-auh5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37646.yml 38.6.0
2026-05-30T20:55:43.808048+00:00 GitLab Importer Affected by VCID-bcub-rasm-nbbq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37639.yml 38.6.0
2026-05-30T20:55:43.588412+00:00 GitLab Importer Affected by VCID-ntth-8qpp-jfet https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37673.yml 38.6.0
2026-05-30T20:55:43.520295+00:00 GitLab Importer Affected by VCID-gvws-rve9-nbat https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37642.yml 38.6.0
2026-05-30T20:55:43.450235+00:00 GitLab Importer Affected by VCID-3ppf-jdk6-y3g8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37662.yml 38.6.0
2026-05-30T20:55:43.374657+00:00 GitLab Importer Affected by VCID-6wkx-ycyz-1qhd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37665.yml 38.6.0
2026-05-30T20:55:43.179808+00:00 GitLab Importer Affected by VCID-5qyz-5xzb-zqc1 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37674.yml 38.6.0
2026-05-30T20:55:43.030628+00:00 GitLab Importer Affected by VCID-qa9p-g79v-fbe1 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37650.yml 38.6.0
2026-05-30T20:55:42.760527+00:00 GitLab Importer Affected by VCID-fhfh-ryxe-67ha https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37664.yml 38.6.0
2026-05-30T20:55:42.692835+00:00 GitLab Importer Affected by VCID-64j2-brru-xqfw https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37682.yml 38.6.0
2026-05-30T20:55:42.476736+00:00 GitLab Importer Affected by VCID-8qh6-fg49-u3b2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37660.yml 38.6.0
2026-05-30T20:55:42.157716+00:00 GitLab Importer Affected by VCID-m5yn-gjpw-53b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37689.yml 38.6.0
2026-05-30T20:55:42.007475+00:00 GitLab Importer Affected by VCID-hk2y-fdnq-ybf1 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37690.yml 38.6.0
2026-05-30T20:55:41.611280+00:00 GitLab Importer Affected by VCID-spbh-6rka-y3a8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37643.yml 38.6.0
2026-05-30T20:55:41.428736+00:00 GitLab Importer Affected by VCID-5dj1-vz8t-ffeb https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37680.yml 38.6.0
2026-05-30T20:55:41.220000+00:00 GitLab Importer Affected by VCID-8k4s-zwck-fkg4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37675.yml 38.6.0
2026-05-30T20:55:41.147947+00:00 GitLab Importer Affected by VCID-6sab-b21w-9kc9 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37638.yml 38.6.0
2026-05-30T20:55:40.318327+00:00 GitLab Importer Affected by VCID-ngsv-ca8h-q7bg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37645.yml 38.6.0
2026-05-30T20:55:39.958421+00:00 GitLab Importer Affected by VCID-hfhh-k29v-1kaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37683.yml 38.6.0
2026-05-30T20:55:39.664963+00:00 GitLab Importer Affected by VCID-81sp-dd4z-2khc https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37670.yml 38.6.0
2026-05-30T20:55:39.597359+00:00 GitLab Importer Affected by VCID-k149-grwj-cyg5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37635.yml 38.6.0
2026-05-30T20:55:39.341335+00:00 GitLab Importer Affected by VCID-uy7w-xnc7-d7c5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37676.yml 38.6.0
2026-05-30T20:55:39.273695+00:00 GitLab Importer Affected by VCID-ddf8-mugz-pbbk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37644.yml 38.6.0
2026-05-30T20:55:39.135043+00:00 GitLab Importer Affected by VCID-55ry-uteb-7ke9 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37661.yml 38.6.0
2026-05-30T20:55:39.000908+00:00 GitLab Importer Affected by VCID-zky1-z6wv-37c5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37656.yml 38.6.0
2026-05-30T20:55:38.925392+00:00 GitLab Importer Affected by VCID-y191-8mqq-zqgk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37668.yml 38.6.0
2026-05-30T20:55:38.513831+00:00 GitLab Importer Affected by VCID-kuxe-7hab-a3cv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37666.yml 38.6.0
2026-05-30T20:55:37.849104+00:00 GitLab Importer Affected by VCID-7wsk-p6nu-7fa5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37636.yml 38.6.0
2026-05-30T20:55:37.530667+00:00 GitLab Importer Affected by VCID-6ebn-m9rw-7ya7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37647.yml 38.6.0
2026-05-30T20:55:37.461800+00:00 GitLab Importer Affected by VCID-z712-rg6q-t7bm https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37659.yml 38.6.0
2026-05-30T20:55:37.394652+00:00 GitLab Importer Affected by VCID-vh5d-4p9r-wubf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37669.yml 38.6.0
2026-05-30T20:55:36.594585+00:00 GitLab Importer Affected by VCID-24nt-xz5z-nqdx https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37657.yml 38.6.0
2026-05-30T20:55:36.367589+00:00 GitLab Importer Affected by VCID-bzsf-bjda-3ber https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37649.yml 38.6.0
2026-05-30T20:55:35.980900+00:00 GitLab Importer Affected by VCID-9faa-mq8t-z7c1 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37651.yml 38.6.0
2026-05-30T20:55:35.618205+00:00 GitLab Importer Affected by VCID-58c5-tv8t-93fq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37678.yml 38.6.0
2026-05-30T20:55:35.335867+00:00 GitLab Importer Affected by VCID-try6-1d3f-y3aq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37663.yml 38.6.0
2026-05-30T20:55:35.267189+00:00 GitLab Importer Affected by VCID-gg52-vvcd-zben https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37691.yml 38.6.0
2026-05-30T20:55:35.046413+00:00 GitLab Importer Affected by VCID-87bh-depq-8fdm https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37648.yml 38.6.0
2026-05-30T20:55:34.806286+00:00 GitLab Importer Affected by VCID-cggq-9awk-3qfm https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37688.yml 38.6.0
2026-05-30T20:55:34.720265+00:00 GitLab Importer Affected by VCID-wwwt-6qtg-mfb7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37672.yml 38.6.0
2026-05-30T20:55:34.646165+00:00 GitLab Importer Affected by VCID-4fax-cv4q-9bb2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37681.yml 38.6.0
2026-05-30T20:55:34.492828+00:00 GitLab Importer Affected by VCID-gm34-n1kp-5qh4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37652.yml 38.6.0
2026-05-30T20:55:34.187272+00:00 GitLab Importer Affected by VCID-3994-kqbn-67cn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37679.yml 38.6.0
2026-05-30T20:55:33.661123+00:00 GitLab Importer Affected by VCID-quc8-whc2-cbg7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37687.yml 38.6.0
2026-05-30T20:55:33.500560+00:00 GitLab Importer Affected by VCID-v5em-3qqk-jqfs https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37640.yml 38.6.0
2026-05-30T20:55:33.107372+00:00 GitLab Importer Affected by VCID-mh7p-x5et-67h4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37637.yml 38.6.0
2026-05-30T20:55:32.434456+00:00 GitLab Importer Affected by VCID-nhv1-35p3-tyfq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37641.yml 38.6.0
2026-05-30T20:55:32.274658+00:00 GitLab Importer Affected by VCID-x23c-1b8p-4qak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37677.yml 38.6.0
2026-05-30T20:55:32.197616+00:00 GitLab Importer Affected by VCID-cyk5-z76t-9bgc https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37667.yml 38.6.0
2026-05-30T20:55:32.055748+00:00 GitLab Importer Affected by VCID-g4y6-tura-gbhx https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tensorflow-cpu/CVE-2021-37653.yml 38.6.0
2026-05-30T20:29:59.207387+00:00 Pypa Importer Affected by VCID-n62z-1akp-ebck https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-93.yaml 38.6.0
2026-05-30T20:29:58.991252+00:00 Pypa Importer Affected by VCID-vqxg-mnz4-13cg https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-79.yaml 38.6.0
2026-05-30T20:29:58.774813+00:00 Pypa Importer Affected by VCID-39ck-bm9t-kqhs https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-66.yaml 38.6.0
2026-05-30T20:29:58.067498+00:00 Pypa Importer Affected by VCID-axj7-aq9m-rqdu https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-80.yaml 38.6.0
2026-05-30T20:29:57.846088+00:00 Pypa Importer Affected by VCID-vfgz-fss4-wbgu https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-83.yaml 38.6.0
2026-05-30T20:29:57.127741+00:00 Pypa Importer Affected by VCID-5tpp-sf62-zycs https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-72.yaml 38.6.0
2026-05-30T20:29:56.905650+00:00 Pypa Importer Affected by VCID-pe9p-a7nn-8bhj https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-91.yaml 38.6.0
2026-05-30T20:29:56.196396+00:00 Pypa Importer Affected by VCID-v2nf-1526-nkbp https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-74.yaml 38.6.0
2026-05-30T20:29:55.971133+00:00 Pypa Importer Affected by VCID-ugta-nt2s-27fk https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-81.yaml 38.6.0
2026-05-30T20:29:55.755043+00:00 Pypa Importer Affected by VCID-en5f-xtha-cyhp https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-95.yaml 38.6.0
2026-05-30T20:29:54.536048+00:00 Pypa Importer Affected by VCID-ngkq-s26c-qkfj https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-98.yaml 38.6.0
2026-05-30T20:29:53.841964+00:00 Pypa Importer Affected by VCID-cwvm-wntu-tfck https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-88.yaml 38.6.0
2026-05-30T20:29:53.616797+00:00 Pypa Importer Affected by VCID-15nt-6tff-k7gb https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-96.yaml 38.6.0
2026-05-30T20:29:51.082688+00:00 Pypa Importer Affected by VCID-ev23-kazv-nkas https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-84.yaml 38.6.0
2026-05-30T20:29:50.854699+00:00 Pypa Importer Affected by VCID-3g5a-5csn-h3d9 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-97.yaml 38.6.0
2026-05-30T20:29:50.691352+00:00 Pypa Importer Affected by VCID-rt4b-xxm6-xubs https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-99.yaml 38.6.0
2026-05-30T20:29:49.957809+00:00 Pypa Importer Affected by VCID-egc6-6pwr-fyej https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-86.yaml 38.6.0
2026-05-30T20:29:49.742090+00:00 Pypa Importer Affected by VCID-466y-e26r-rka4 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-103.yaml 38.6.0
2026-05-30T20:29:49.514107+00:00 Pypa Importer Affected by VCID-f3cx-k63z-7qde https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-68.yaml 38.6.0
2026-05-30T20:29:47.834395+00:00 Pypa Importer Affected by VCID-jdud-ufqp-4yg5 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-100.yaml 38.6.0
2026-05-30T20:29:47.621809+00:00 Pypa Importer Affected by VCID-x5x3-2cyz-xbhe https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-87.yaml 38.6.0
2026-05-30T20:29:45.419705+00:00 Pypa Importer Affected by VCID-vgv7-xc3c-1fb3 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-73.yaml 38.6.0
2026-05-30T20:29:44.730490+00:00 Pypa Importer Affected by VCID-x2t2-4sa6-qygs https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-70.yaml 38.6.0
2026-05-30T20:29:44.463730+00:00 Pypa Importer Affected by VCID-m4na-tgrp-d7fk https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-85.yaml 38.6.0
2026-05-30T20:29:44.244906+00:00 Pypa Importer Affected by VCID-qgr6-bqrc-puhs https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-69.yaml 38.6.0
2026-05-30T20:29:44.026171+00:00 Pypa Importer Affected by VCID-hujj-6vv2-u3c2 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-92.yaml 38.6.0
2026-05-30T20:29:42.765102+00:00 Pypa Importer Affected by VCID-f25m-udat-n3fd https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-71.yaml 38.6.0
2026-05-30T20:29:41.546548+00:00 Pypa Importer Affected by VCID-g8ts-ghhv-33e3 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-89.yaml 38.6.0
2026-05-30T20:29:41.325295+00:00 Pypa Importer Affected by VCID-fggx-3rzd-8kf5 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-94.yaml 38.6.0
2026-05-30T20:29:40.073902+00:00 Pypa Importer Affected by VCID-q4zv-syab-bbh8 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-67.yaml 38.6.0
2026-05-30T20:29:39.843867+00:00 Pypa Importer Affected by VCID-3czq-3twf-skcg https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-82.yaml 38.6.0
2026-05-30T20:29:39.607456+00:00 Pypa Importer Affected by VCID-mtqg-yga8-eqeu https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-90.yaml 38.6.0
2026-05-30T20:29:38.847310+00:00 Pypa Importer Affected by VCID-ccv1-pgda-r7ba https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-75.yaml 38.6.0
2026-05-30T20:29:36.195330+00:00 Pypa Importer Affected by VCID-yvag-32h1-yfc5 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-64.yaml 38.6.0
2026-05-30T20:29:35.970841+00:00 Pypa Importer Affected by VCID-akmu-fas1-33h6 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-65.yaml 38.6.0
2026-05-30T20:29:35.238857+00:00 Pypa Importer Affected by VCID-6888-uhtp-8ub6 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-61.yaml 38.6.0
2026-05-30T20:29:33.991149+00:00 Pypa Importer Affected by VCID-vpyd-he5n-b3a4 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-63.yaml 38.6.0
2026-05-30T20:29:33.264916+00:00 Pypa Importer Affected by VCID-eyqx-7k24-zfhq https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-62.yaml 38.6.0
2026-05-30T20:29:33.034827+00:00 Pypa Importer Affected by VCID-ky4u-eny7-33fy https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-53.yaml 38.6.0
2026-05-30T20:29:32.313628+00:00 Pypa Importer Affected by VCID-83pe-ztey-dbf4 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-78.yaml 38.6.0
2026-05-30T20:29:32.096393+00:00 Pypa Importer Affected by VCID-gg98-zkw8-5ben https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-49.yaml 38.6.0
2026-05-30T20:29:30.421851+00:00 Pypa Importer Affected by VCID-9arh-a8wj-wka6 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-58.yaml 38.6.0
2026-05-30T20:29:29.687752+00:00 Pypa Importer Affected by VCID-6gnj-az99-h7b4 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-59.yaml 38.6.0
2026-05-30T20:29:28.972970+00:00 Pypa Importer Affected by VCID-vnn5-y8ez-rub9 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-77.yaml 38.6.0
2026-05-30T20:29:28.251680+00:00 Pypa Importer Affected by VCID-97cs-4kx3-37gm https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-57.yaml 38.6.0
2026-05-30T20:29:27.564772+00:00 Pypa Importer Affected by VCID-rsau-jvcr-uudd https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-60.yaml 38.6.0
2026-05-30T20:29:27.348031+00:00 Pypa Importer Affected by VCID-qxqd-f1bw-y7h4 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-56.yaml 38.6.0
2026-05-30T20:29:27.113455+00:00 Pypa Importer Affected by VCID-11qd-d7c7-sbdm https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-55.yaml 38.6.0
2026-05-30T20:29:26.890028+00:00 Pypa Importer Affected by VCID-145d-k5w3-tfgz https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-76.yaml 38.6.0
2026-05-30T20:29:24.725779+00:00 Pypa Importer Affected by VCID-g8er-52ns-j7b1 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-52.yaml 38.6.0
2026-05-30T20:29:23.063067+00:00 Pypa Importer Affected by VCID-1ah5-hm7a-ykep https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-54.yaml 38.6.0
2026-05-30T20:29:22.846796+00:00 Pypa Importer Affected by VCID-d3dc-su6w-s3ag https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-50.yaml 38.6.0
2026-05-30T20:29:22.616932+00:00 Pypa Importer Affected by VCID-ev84-gxjn-6bf1 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-51.yaml 38.6.0
2026-05-30T20:28:59.688200+00:00 Pypa Importer Affected by VCID-bm3u-2ych-eqac https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-636.yaml 38.6.0
2026-05-30T20:28:58.282817+00:00 Pypa Importer Affected by VCID-nfr9-fgdn-4kh8 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-631.yaml 38.6.0
2026-05-30T20:28:55.229310+00:00 Pypa Importer Affected by VCID-rujq-67w1-u3g7 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-634.yaml 38.6.0
2026-05-30T20:28:52.763716+00:00 Pypa Importer Affected by VCID-rr2a-8jrx-6ue8 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-622.yaml 38.6.0
2026-05-30T20:28:52.408317+00:00 Pypa Importer Affected by VCID-1sr1-happ-6ugc https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-630.yaml 38.6.0
2026-05-30T20:28:49.305485+00:00 Pypa Importer Affected by VCID-kupu-frrt-pqen https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-625.yaml 38.6.0
2026-05-30T20:28:46.314418+00:00 Pypa Importer Affected by VCID-b8sr-erwh-5yh8 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-637.yaml 38.6.0
2026-05-30T20:28:44.118324+00:00 Pypa Importer Affected by VCID-w2ns-kqmv-xfan https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-617.yaml 38.6.0
2026-05-30T20:28:43.756200+00:00 Pypa Importer Affected by VCID-g144-4yvx-xybr https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-612.yaml 38.6.0
2026-05-30T20:28:42.385075+00:00 Pypa Importer Affected by VCID-9gde-ga9q-pqb4 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-616.yaml 38.6.0
2026-05-30T20:28:42.126132+00:00 Pypa Importer Affected by VCID-sf59-u7jt-4bd5 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-845.yaml 38.6.0
2026-05-30T20:28:40.889490+00:00 Pypa Importer Affected by VCID-rkx2-5nyj-bbhu https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-627.yaml 38.6.0
2026-05-30T20:28:36.145027+00:00 Pypa Importer Affected by VCID-5d73-819a-xbeg https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-618.yaml 38.6.0
2026-05-30T20:28:29.254187+00:00 Pypa Importer Affected by VCID-5ty2-z944-mbht https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-623.yaml 38.6.0
2026-05-30T20:28:27.021266+00:00 Pypa Importer Affected by VCID-9snf-qxka-83hd https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-614.yaml 38.6.0
2026-05-30T20:28:23.117601+00:00 Pypa Importer Affected by VCID-9dhc-1f13-5qht https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-628.yaml 38.6.0
2026-05-30T20:28:21.680010+00:00 Pypa Importer Affected by VCID-g423-bnfj-kybz https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-633.yaml 38.6.0
2026-05-30T20:28:15.617536+00:00 Pypa Importer Affected by VCID-688g-g33x-67g9 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-632.yaml 38.6.0
2026-05-30T20:28:14.429728+00:00 Pypa Importer Affected by VCID-y7hx-h69v-wfcy https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-621.yaml 38.6.0
2026-05-30T20:28:13.068895+00:00 Pypa Importer Affected by VCID-sb7m-pngm-5fbj https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-624.yaml 38.6.0
2026-05-30T20:28:12.717432+00:00 Pypa Importer Affected by VCID-5xgg-h9wh-3uh7 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-635.yaml 38.6.0
2026-05-30T20:28:10.709635+00:00 Pypa Importer Affected by VCID-2cw7-2xzs-abfz https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-626.yaml 38.6.0
2026-05-30T20:28:10.343453+00:00 Pypa Importer Affected by VCID-exm3-hpp6-g7hg https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-615.yaml 38.6.0
2026-05-30T20:28:08.993743+00:00 Pypa Importer Affected by VCID-myjm-gbbc-qucg https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-613.yaml 38.6.0
2026-05-30T20:28:07.794388+00:00 Pypa Importer Affected by VCID-2hqc-3d51-4yf5 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-608.yaml 38.6.0
2026-05-30T20:28:02.002052+00:00 Pypa Importer Affected by VCID-aad5-dg9x-53cz https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-609.yaml 38.6.0
2026-05-30T20:28:01.740979+00:00 Pypa Importer Affected by VCID-yh43-ndzp-4ue9 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-844.yaml 38.6.0
2026-05-30T20:28:01.383492+00:00 Pypa Importer Affected by VCID-gbft-tx74-wkhf https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-619.yaml 38.6.0
2026-05-30T20:28:01.034956+00:00 Pypa Importer Affected by VCID-xbt8-r95u-sqbu https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-611.yaml 38.6.0
2026-05-30T20:27:58.851617+00:00 Pypa Importer Affected by VCID-cu5c-pmqv-xkdz https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-610.yaml 38.6.0
2026-05-30T20:27:55.895566+00:00 Pypa Importer Affected by VCID-qvnc-gzf6-y3f3 https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-606.yaml 38.6.0
2026-05-30T20:27:55.536795+00:00 Pypa Importer Affected by VCID-qdnt-cg25-5kdx https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2021-607.yaml 38.6.0