TensorFlow Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 434 known vulnerabilities in TensorFlow, 17 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
67
Risk Score
434
Total CVEs
17
Critical
pip
Ecosystem
Sep 25, 2025
Last CVE
4%
Patch Rate
1372d
Avg Time to Patch
195,966 stars 75,187 forks 3,249 issues 3,706 dependents Last push Jun 28, 2026
View on GitHub
OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 13 of 18)

Severity CVE ID Summary CVSS Published
HIGH CVE-2021-29603 TensorFlow TFLite: heap OOB write via malformed model 7.8 May 14, 2021 MEDIUM CVE-2021-29602 TensorFlow TFLite: DepthwiseConv division-by-zero DoS 5.5 May 14, 2021 HIGH CVE-2021-29601 TensorFlow Lite: integer overflow in model concatenation 7.1 May 14, 2021 HIGH CVE-2021-29600 TensorFlow TFLite: div-by-zero via crafted OneHot model 7.8 May 14, 2021 HIGH CVE-2021-29599 TFLite Split: malicious model triggers div-by-zero (DoS/RCE) 7.8 May 14, 2021 HIGH CVE-2021-29598 TensorFlow TFLite: SVDF div-by-zero enables RCE 7.8 May 14, 2021 HIGH CVE-2021-29597 TensorFlow TFLite: div-by-zero crash via crafted model 7.8 May 14, 2021 HIGH CVE-2021-29596 TensorFlow TFLite: div-by-zero in EmbeddingLookup op 7.8 May 14, 2021 HIGH CVE-2021-29595 TensorFlow TFLite: crash/RCE via malicious model file 7.8 May 14, 2021 HIGH CVE-2021-29594 TFLite: divide-by-zero in conv allows code execution 7.8 May 14, 2021 HIGH CVE-2021-29593 TensorFlow TFLite: div-by-zero via crafted model file 7.8 May 14, 2021 HIGH CVE-2021-29592 TensorFlow Lite: null-ptr deref in Reshape via 1D tensor 7.8 May 14, 2021 HIGH CVE-2021-29591 TFLite: crafted model causes infinite loop / stack overflow 7.8 May 14, 2021 HIGH CVE-2021-29590 TensorFlow TFLite: OOB read via empty tensor in Min/Max ops 7.1 May 14, 2021 HIGH CVE-2021-29589 TFLite GatherNd: divide-by-zero crashes inference runtime 7.8 May 14, 2021 HIGH CVE-2021-29588 TensorFlow Lite: DoS/RCE via crafted model stride=0 7.8 May 14, 2021 HIGH CVE-2021-29587 TensorFlow TFLite: divide-by-zero via crafted model file 7.8 May 14, 2021 HIGH CVE-2021-29586 TFLite: div-by-zero in pooling crashes inference engine 7.8 May 14, 2021 HIGH CVE-2021-29585 TensorFlow TFLite: divide-by-zero crashes ML inference 7.8 May 14, 2021 MEDIUM CVE-2021-29584 TensorFlow: integer overflow DoS in SparseSplit op 5.5 May 14, 2021 HIGH CVE-2021-29583 TensorFlow: heap overflow in FusedBatchNorm risks RCE 7.8 May 14, 2021 HIGH CVE-2021-29582 TensorFlow: OOB heap read via Dequantize shape mismatch 7.1 May 14, 2021 MEDIUM CVE-2021-29581 TensorFlow: DoS via null buffer in CTCBeamSearchDecoder 5.5 May 14, 2021 MEDIUM CVE-2021-29580 TensorFlow: DoS via empty tensor in FractionalMaxPoolGrad 5.5 May 14, 2021 HIGH CVE-2021-29579 TensorFlow: heap buffer overflow in MaxPoolGrad kernel 7.8 May 14, 2021

Showing 301–325 of 434

Frequently asked questions

What is TensorFlow?

TensorFlow is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does TensorFlow have?

TensorFlow has 434 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is TensorFlow distributed in?

TensorFlow is distributed via the pip ecosystem and categorized as ml libraries.

Where does the TensorFlow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of TensorFlow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring