Search for vulnerabilities
| Vulnerability ID | VCID-7tq1-zhms-yybt |
| Aliases |
CVE-2020-15196
GHSA-pg59-2f92-5cph PYSEC-2020-119 PYSEC-2020-276 PYSEC-2020-311 |
| Summary | In Tensorflow version 2.3.0, the `SparseCountSparseOutput` and `RaggedCountSparseOutput` implementations don't validate that the `weights` tensor has the same shape as the data. The check exists for `DenseCountSparseOutput`, where both tensors are fully specified. In the sparse and ragged count weights are still accessed in parallel with the data. But, since there is no validation, a user passing fewer weights than the values for the tensors can generate a read from outside the bounds of the heap buffer allocated for the weights. The issue is patched in commit 3cbb917b4714766030b28eba9fb41bb97ce9ee02 and is released in TensorFlow version 2.3.1. |
| Status | Published |
| Exploitability | None |
| Weighted Severity | None |
| Risk | None |
| Affected and Fixed Packages | Package Details |
| System | Score | Found at |
|---|---|---|
| epss | 0.00302 | https://api.first.org/data/v1/epss?cve=CVE-2020-15196 |
| cvssv3.1_qr | MODERATE | https://github.com/advisories/GHSA-pg59-2f92-5cph |
| cvssv3.1_qr | MODERATE | https://github.com/tensorflow/tensorflow/security/advisories/GHSA-pg59-2f92-5cph |
| Percentile | 0.53759 |
| EPSS Score | 0.00302 |
| Published At | May 30, 2026, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-05-30T20:19:56.966799+00:00 | Pypa Importer | Import | https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2020-276.yaml | 38.6.0 |