TensorFlow Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 434 known vulnerabilities in TensorFlow, 17 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
67
Risk Score
434
Total CVEs
17
Critical
pip
Ecosystem
Sep 25, 2025
Last CVE
4%
Patch Rate
1372d
Avg Time to Patch
195,966 stars 75,187 forks 3,249 issues 3,706 dependents Last push Jun 28, 2026
View on GitHub
OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 10 of 18)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2021-37690 TensorFlow: use-after-free crashes training processes 6.6 Aug 13, 2021 MEDIUM CVE-2021-37692 TensorFlow: string tensor GC segfault causes process DoS 5.5 Aug 12, 2021 MEDIUM CVE-2021-37691 TensorFlow TFLite: DoS via crafted model in LSH kernel 5.5 Aug 12, 2021 MEDIUM CVE-2021-37687 TFLite: heap OOB read via negative indices in GatherNd 5.5 Aug 12, 2021 MEDIUM CVE-2021-37685 TensorFlow Lite: OOB read leaks heap memory in expand_dims 5.5 Aug 12, 2021 MEDIUM CVE-2021-37684 TensorFlow TFLite: DoS via division by zero in pooling 5.5 Aug 12, 2021 MEDIUM CVE-2021-37683 TFLite: division by zero DoS in inference kernels 5.5 Aug 12, 2021 HIGH CVE-2021-37682 TFLite: uninitialized quant params corrupt inference 7.1 Aug 12, 2021 HIGH CVE-2021-37679 TensorFlow: heap over-read leaks memory via RaggedTensor 7.8 Aug 12, 2021 HIGH CVE-2021-37678 TensorFlow/Keras: RCE via YAML model deserialization 8.8 Aug 12, 2021 MEDIUM CVE-2021-37677 TensorFlow: DoS via invalid Dequantize axis argument 5.5 Aug 12, 2021 MEDIUM CVE-2021-37674 TensorFlow: DoS via MaxPoolGrad invalid tensor input 5.5 Aug 12, 2021 MEDIUM CVE-2021-37673 TensorFlow: MapStage CHECK-fail causes process DoS 5.5 Aug 12, 2021 MEDIUM CVE-2021-37672 TensorFlow: heap OOB read in SdcaOptimizerV2 5.5 Aug 12, 2021 MEDIUM CVE-2021-37670 TensorFlow: heap OOB read in sorting ops 5.5 Aug 12, 2021 MEDIUM CVE-2021-37669 TensorFlow: integer conversion DoS in NonMaxSuppression ops 5.5 Aug 12, 2021 MEDIUM CVE-2021-37668 TensorFlow: DoS via div-by-zero in UnravelIndex op 5.5 Aug 12, 2021 HIGH CVE-2021-37665 TensorFlow MKL: null-ptr/heap-OOB in requantization ops 7.8 Aug 12, 2021 HIGH CVE-2021-37663 TensorFlow: QuantizeV2 heap OOB/null-deref in quantization 7.8 Aug 12, 2021 MEDIUM CVE-2021-37689 TensorFlow Lite: MLIR null ptr deref crashes inference 5.5 Aug 12, 2021 MEDIUM CVE-2021-37688 TensorFlow Lite: DoS via crafted TFLite model file 5.5 Aug 12, 2021 MEDIUM CVE-2021-37686 TFLite: infinite loop DoS via crafted strided slice model 5.5 Aug 12, 2021 HIGH CVE-2021-37681 TensorFlow Lite: null ptr deref crashes SVDF inference 7.8 Aug 12, 2021 MEDIUM CVE-2021-37680 TFLite: division by zero crashes fully connected layers 5.5 Aug 12, 2021 HIGH CVE-2021-37676 TensorFlow: null ptr deref in SparseFillEmptyRows op 7.8 Aug 12, 2021

Showing 226–250 of 434

Frequently asked questions

What is TensorFlow?

TensorFlow is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does TensorFlow have?

TensorFlow has 434 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is TensorFlow distributed in?

TensorFlow is distributed via the pip ecosystem and categorized as ml libraries.

Where does the TensorFlow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of TensorFlow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring