VulnerableCode Vulnerability Details - VCID-h638-b3zk-wqfa

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-h638-b3zk-wqfa

Essentials
Severities (1)
References (9)
Severity details (1)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-h638-b3zk-wqfa
Aliases	CVE-2021-41228 GHSA-3rcw-9p9x-582v PYSEC-2021-420 PYSEC-2021-637 PYSEC-2021-835
Summary	multiple issues
Status	Published
Exploitability	None
Weighted Severity	None
Risk	None
Affected and Fixed Packages	Package Details

Weaknesses (4)

CWE-78	Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CWE-94	Improper Control of Generation of Code ('Code Injection')
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
archlinux	High	https://security.archlinux.org/AVG-2529

Reference id	Reference type	URL
		https://github.com/pypa/advisory-database/tree/main/vulns/tensorflow-cpu/PYSEC-2021-637.yaml
		https://github.com/pypa/advisory-database/tree/main/vulns/tensorflow-gpu/PYSEC-2021-835.yaml
		https://github.com/pypa/advisory-database/tree/main/vulns/tensorflow/PYSEC-2021-420.yaml
		https://github.com/tensorflow/tensorflow
		https://github.com/tensorflow/tensorflow/commit/8b202f08d52e8206af2bdb2112a62fafbc546ec7
		https://github.com/tensorflow/tensorflow/security/advisories/GHSA-3rcw-9p9x-582v
AVG-2529		https://security.archlinux.org/AVG-2529
CVE-2021-41228		https://nvd.nist.gov/vuln/detail/CVE-2021-41228
GHSA-3rcw-9p9x-582v		https://github.com/advisories/GHSA-3rcw-9p9x-582v

No exploits are available.

No EPSS data available for this vulnerability.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-01T19:57:30.781708+00:00	Arch Linux Importer	Import	https://security.archlinux.org/AVG-2529	38.6.0