TensorFlow Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 434 known vulnerabilities in TensorFlow, 17 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
67
Risk Score
434
Total CVEs
17
Critical
pip
Ecosystem
Sep 25, 2025
Last CVE
4%
Patch Rate
1372d
Avg Time to Patch
195,966 stars 75,187 forks 3,249 issues 3,706 dependents Last push Jun 28, 2026
View on GitHub
OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 12 of 18)

Severity CVE ID Summary CVSS Published
HIGH CVE-2021-37639 TensorFlow: heap OOB read via tensor restore API 7.8 Aug 12, 2021 HIGH CVE-2021-37638 TensorFlow: null ptr deref in RaggedTensorToTensor op 7.8 Aug 12, 2021 MEDIUM CVE-2021-37637 TensorFlow: null ptr dereference in CompressElement (DoS) 5.5 Aug 12, 2021 MEDIUM CVE-2021-37660 TensorFlow: DoS via divide-by-zero in inplace ops 5.5 Aug 12, 2021 MEDIUM CVE-2021-37653 TensorFlow: DoS via divide-by-zero in ResourceGather op 5.5 Aug 12, 2021 MEDIUM CVE-2021-37642 TensorFlow: ResourceScatterDiv div-by-zero enables DoS 5.5 Aug 12, 2021 MEDIUM CVE-2021-37640 TensorFlow: SparseReshape div-by-zero crashes ML pipelines 5.5 Aug 12, 2021 MEDIUM CVE-2021-37636 TensorFlow: div-by-zero DoS in SparseDenseCwiseDiv op 5.5 Aug 12, 2021 CRITICAL CVE-2021-35958 TensorFlow: path traversal in get_file allows file overwrite 9.1 Jun 30, 2021 MEDIUM CVE-2021-29619 TensorFlow: DoS via invalid SparseCount op args 5.5 May 14, 2021 MEDIUM CVE-2021-29618 TensorFlow: DoS crash via tf.transpose complex+conjugate 5.5 May 14, 2021 MEDIUM CVE-2021-29617 TensorFlow: DoS via CHECK-fail in strings.substr 5.5 May 14, 2021 HIGH CVE-2021-29616 TensorFlow: null ptr deref in graph optimizer 7.8 May 14, 2021 MEDIUM CVE-2021-29615 TensorFlow: uncontrolled recursion DoS in ParseAttrValue 5.5 May 14, 2021 HIGH CVE-2021-29614 TensorFlow: OOB write in decode_raw crashes interpreter 7.8 May 14, 2021 HIGH CVE-2021-29613 TensorFlow: CTCLoss heap OOB read, info leak + crash 7.1 May 14, 2021 HIGH CVE-2021-29612 TensorFlow: heap overflow in linalg op, RCE risk 7.8 May 14, 2021 MEDIUM CVE-2021-29611 TensorFlow: DoS via SparseReshape invalid tensor input 5.5 May 14, 2021 HIGH CVE-2021-29610 TensorFlow: heap R/W via quantization axis underflow 7.8 May 14, 2021 HIGH CVE-2021-29609 TensorFlow: SparseAdd heap OOB write and null deref 7.8 May 14, 2021 HIGH CVE-2021-29608 TensorFlow: heap OOB in RaggedTensorToTensor op 7.8 May 14, 2021 HIGH CVE-2021-29607 TensorFlow: heap OOB write in SparseAdd op 7.8 May 14, 2021 HIGH CVE-2021-29606 TensorFlow Lite: OOB read via crafted TFLite model 7.8 May 14, 2021 MEDIUM CVE-2021-29605 TFLite: integer overflow DoS via crafted model file 5.5 May 14, 2021 MEDIUM CVE-2021-29604 TFLite: DoS via division by zero in hashtable lookup 5.5 May 14, 2021

Showing 276–300 of 434

Frequently asked questions

What is TensorFlow?

TensorFlow is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does TensorFlow have?

TensorFlow has 434 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is TensorFlow distributed in?

TensorFlow is distributed via the pip ecosystem and categorized as ml libraries.

Where does the TensorFlow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of TensorFlow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring