TensorFlow Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 434 known vulnerabilities in TensorFlow, 17 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
67
Risk Score
434
Total CVEs
17
Critical
pip
Ecosystem
Sep 25, 2025
Last CVE
4%
Patch Rate
1372d
Avg Time to Patch
195,966 stars 75,187 forks 3,249 issues 3,706 dependents Last push Jun 28, 2026
View on GitHub
OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 1 of 18)

Severity CVE ID Summary CVSS Published
HIGH CVE-2025-55559 TensorFlow: DoS via Conv2D valid padding crash 7.5 Sep 25, 2025 MEDIUM CVE-2025-55556 TensorFlow: non-deterministic compilation breaks Embedding 6.5 Sep 25, 2025 HIGH CVE-2025-0649 TensorFlow Serving: JSON recursion DoS on inference API 7.5 May 6, 2025 HIGH CVE-2023-33976 TensorFlow: DoS via upper_bound rank validation crash 7.5 Jul 30, 2024 MEDIUM CVE-2023-30767 Intel TF Opt: buffer overflow enables local privesc 6.7 Feb 14, 2024 HIGH CVE-2023-27506 Intel TF Opt: buffer overflow enables local priv-esc 7.8 Aug 11, 2023 MEDIUM CVE-2023-25661 TensorFlow: DoS via malformed Convolution3D input 6.5 Mar 27, 2023 HIGH CVE-2023-27579 TensorFlow Lite: FPE in tflite model crashes inference runtime 7.5 Mar 25, 2023 HIGH CVE-2023-25801 TensorFlow: double-free in pooling ops enables RCE 7.8 Mar 25, 2023 HIGH CVE-2023-25676 TensorFlow: NULL ptr deref DoS in ParallelConcat op 7.5 Mar 25, 2023 HIGH CVE-2023-25675 TensorFlow XLA: Bincount shape mismatch causes DoS 7.5 Mar 25, 2023 HIGH CVE-2023-25674 TensorFlow: null pointer DoS in RandomShuffle (XLA) 7.5 Mar 25, 2023 HIGH CVE-2023-25673 TensorFlow: FPE in TensorListSplit (XLA) remote DoS 7.5 Mar 25, 2023 HIGH CVE-2023-25672 TensorFlow: NPE in LookupTableImportV2 causes DoS 7.5 Mar 25, 2023 HIGH CVE-2023-25671 TensorFlow: OOB write DoS via integer type mismatch 7.5 Mar 25, 2023 HIGH CVE-2023-25670 TensorFlow: null ptr DoS in quantized MKL MatMul 7.5 Mar 25, 2023 HIGH CVE-2023-25669 TensorFlow: DoS via AvgPoolGrad invalid stride params 7.5 Mar 25, 2023 CRITICAL CVE-2023-25668 TensorFlow: unauthenticated RCE via heap buffer overflow 9.8 Mar 25, 2023 HIGH CVE-2023-25667 TensorFlow: integer overflow DoS in video frame decoding 7.5 Mar 25, 2023 HIGH CVE-2023-25666 TensorFlow: FPE in AudioSpectrogram causes DoS 7.5 Mar 25, 2023 HIGH CVE-2023-25665 TensorFlow: null ptr deref DoS via sparse tensors 7.5 Mar 25, 2023 CRITICAL CVE-2023-25664 TensorFlow: heap overflow in AvgPoolGrad, RCE risk 9.8 Mar 25, 2023 HIGH CVE-2023-25663 TensorFlow: null ptr deref crashes inference serving 7.5 Mar 25, 2023 HIGH CVE-2023-25662 TensorFlow: integer overflow in EditDistance causes DoS 7.5 Mar 25, 2023 HIGH CVE-2023-25660 TensorFlow: null ptr deref in Print op allows remote DoS 7.5 Mar 25, 2023

Showing 1–25 of 434

Frequently asked questions

What is TensorFlow?

TensorFlow is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does TensorFlow have?

TensorFlow has 434 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is TensorFlow distributed in?

TensorFlow is distributed via the pip ecosystem and categorized as ml libraries.

Where does the TensorFlow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of TensorFlow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring