AI Threat Alert

TensorFlow Vulnerabilities

pip ML Libraries

67

Risk Score

434

Total CVEs

17

Critical

pip

Ecosystem

Sep 25, 2025

Last CVE

4%

Patch Rate

1372d

Avg Time to Patch

195,126 stars 75,302 forks 5,296 issues 3,685 dependents Last push May 17, 2026

OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 10 of 18)

Severity CVE ID Summary CVSS Published

MEDIUM CVE-2021-37690 TensorFlow: use-after-free crashes training processes 6.6 Aug 13, 2021 MEDIUM CVE-2021-37692 TensorFlow: string tensor GC segfault causes process DoS 5.5 Aug 12, 2021 MEDIUM CVE-2021-37691 TensorFlow TFLite: DoS via crafted model in LSH kernel 5.5 Aug 12, 2021 MEDIUM CVE-2021-37687 TFLite: heap OOB read via negative indices in GatherNd 5.5 Aug 12, 2021 MEDIUM CVE-2021-37685 TensorFlow Lite: OOB read leaks heap memory in expand_dims 5.5 Aug 12, 2021 MEDIUM CVE-2021-37684 TensorFlow TFLite: DoS via division by zero in pooling 5.5 Aug 12, 2021 MEDIUM CVE-2021-37683 TFLite: division by zero DoS in inference kernels 5.5 Aug 12, 2021 HIGH CVE-2021-37682 TFLite: uninitialized quant params corrupt inference 7.1 Aug 12, 2021 HIGH CVE-2021-37679 TensorFlow: heap over-read leaks memory via RaggedTensor 7.8 Aug 12, 2021 HIGH CVE-2021-37678 TensorFlow/Keras: RCE via YAML model deserialization 8.8 Aug 12, 2021 MEDIUM CVE-2021-37677 TensorFlow: DoS via invalid Dequantize axis argument 5.5 Aug 12, 2021 MEDIUM CVE-2021-37674 TensorFlow: DoS via MaxPoolGrad invalid tensor input 5.5 Aug 12, 2021 MEDIUM CVE-2021-37673 TensorFlow: MapStage CHECK-fail causes process DoS 5.5 Aug 12, 2021 MEDIUM CVE-2021-37672 TensorFlow: heap OOB read in SdcaOptimizerV2 5.5 Aug 12, 2021 MEDIUM CVE-2021-37670 TensorFlow: heap OOB read in sorting ops 5.5 Aug 12, 2021 MEDIUM CVE-2021-37669 TensorFlow: integer conversion DoS in NonMaxSuppression ops 5.5 Aug 12, 2021 MEDIUM CVE-2021-37668 TensorFlow: DoS via div-by-zero in UnravelIndex op 5.5 Aug 12, 2021 HIGH CVE-2021-37665 TensorFlow MKL: null-ptr/heap-OOB in requantization ops 7.8 Aug 12, 2021 HIGH CVE-2021-37663 TensorFlow: QuantizeV2 heap OOB/null-deref in quantization 7.8 Aug 12, 2021 MEDIUM CVE-2021-37689 TensorFlow Lite: MLIR null ptr deref crashes inference 5.5 Aug 12, 2021 MEDIUM CVE-2021-37688 TensorFlow Lite: DoS via crafted TFLite model file 5.5 Aug 12, 2021 MEDIUM CVE-2021-37686 TFLite: infinite loop DoS via crafted strided slice model 5.5 Aug 12, 2021 HIGH CVE-2021-37681 TensorFlow Lite: null ptr deref crashes SVDF inference 7.8 Aug 12, 2021 MEDIUM CVE-2021-37680 TFLite: division by zero crashes fully connected layers 5.5 Aug 12, 2021 HIGH CVE-2021-37676 TensorFlow: null ptr deref in SparseFillEmptyRows op 7.8 Aug 12, 2021

Showing 226–250 of 434

← Previous Next →

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring