AI Threat Alert

TensorFlow Vulnerabilities

pip ML Libraries

67

Risk Score

434

Total CVEs

17

Critical

pip

Ecosystem

Sep 25, 2025

Last CVE

4%

Patch Rate

1372d

Avg Time to Patch

195,126 stars 75,302 forks 5,296 issues 3,685 dependents Last push May 17, 2026

OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 12 of 18)

Severity CVE ID Summary CVSS Published

HIGH CVE-2021-37639 TensorFlow: heap OOB read via tensor restore API 7.8 Aug 12, 2021 HIGH CVE-2021-37638 TensorFlow: null ptr deref in RaggedTensorToTensor op 7.8 Aug 12, 2021 MEDIUM CVE-2021-37637 TensorFlow: null ptr dereference in CompressElement (DoS) 5.5 Aug 12, 2021 MEDIUM CVE-2021-37660 TensorFlow: DoS via divide-by-zero in inplace ops 5.5 Aug 12, 2021 MEDIUM CVE-2021-37653 TensorFlow: DoS via divide-by-zero in ResourceGather op 5.5 Aug 12, 2021 MEDIUM CVE-2021-37642 TensorFlow: ResourceScatterDiv div-by-zero enables DoS 5.5 Aug 12, 2021 MEDIUM CVE-2021-37640 TensorFlow: SparseReshape div-by-zero crashes ML pipelines 5.5 Aug 12, 2021 MEDIUM CVE-2021-37636 TensorFlow: div-by-zero DoS in SparseDenseCwiseDiv op 5.5 Aug 12, 2021 CRITICAL CVE-2021-35958 TensorFlow: path traversal in get_file allows file overwrite 9.1 Jun 30, 2021 MEDIUM CVE-2021-29619 TensorFlow: DoS via invalid SparseCount op args 5.5 May 14, 2021 MEDIUM CVE-2021-29618 TensorFlow: DoS crash via tf.transpose complex+conjugate 5.5 May 14, 2021 MEDIUM CVE-2021-29617 TensorFlow: DoS via CHECK-fail in strings.substr 5.5 May 14, 2021 HIGH CVE-2021-29616 TensorFlow: null ptr deref in graph optimizer 7.8 May 14, 2021 MEDIUM CVE-2021-29615 TensorFlow: uncontrolled recursion DoS in ParseAttrValue 5.5 May 14, 2021 HIGH CVE-2021-29614 TensorFlow: OOB write in decode_raw crashes interpreter 7.8 May 14, 2021 HIGH CVE-2021-29613 TensorFlow: CTCLoss heap OOB read, info leak + crash 7.1 May 14, 2021 HIGH CVE-2021-29612 TensorFlow: heap overflow in linalg op, RCE risk 7.8 May 14, 2021 MEDIUM CVE-2021-29611 TensorFlow: DoS via SparseReshape invalid tensor input 5.5 May 14, 2021 HIGH CVE-2021-29610 TensorFlow: heap R/W via quantization axis underflow 7.8 May 14, 2021 HIGH CVE-2021-29609 TensorFlow: SparseAdd heap OOB write and null deref 7.8 May 14, 2021 HIGH CVE-2021-29608 TensorFlow: heap OOB in RaggedTensorToTensor op 7.8 May 14, 2021 HIGH CVE-2021-29607 TensorFlow: heap OOB write in SparseAdd op 7.8 May 14, 2021 HIGH CVE-2021-29606 TensorFlow Lite: OOB read via crafted TFLite model 7.8 May 14, 2021 MEDIUM CVE-2021-29605 TFLite: integer overflow DoS via crafted model file 5.5 May 14, 2021 MEDIUM CVE-2021-29604 TFLite: DoS via division by zero in hashtable lookup 5.5 May 14, 2021

Showing 276–300 of 434

← Previous Next →

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring