TensorFlow Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 434 known vulnerabilities in TensorFlow, 17 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
67
Risk Score
434
Total CVEs
17
Critical
pip
Ecosystem
Sep 25, 2025
Last CVE
4%
Patch Rate
1372d
Avg Time to Patch
195,966 stars 75,187 forks 3,249 issues 3,706 dependents Last push Jun 28, 2026
View on GitHub
OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 15 of 18)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2021-29552 TensorFlow: DoS via empty num_segments tensor assertion 5.5 May 14, 2021 MEDIUM CVE-2021-29551 TensorFlow: OOB read DoS in MatrixTriangularSolve kernel 5.5 May 14, 2021 MEDIUM CVE-2021-29550 TensorFlow: FractionalAvgPool DoS via divide-by-zero 5.5 May 14, 2021 MEDIUM CVE-2021-29549 TensorFlow: divide-by-zero DoS in quantized batch norm op 5.5 May 14, 2021 MEDIUM CVE-2021-29548 TensorFlow: DoS via division by zero in QuantizedBatchNorm 5.5 May 14, 2021 MEDIUM CVE-2021-29547 TensorFlow: OOB read DoS via empty tensor in QuantizedBatchNorm 5.5 May 14, 2021 HIGH CVE-2021-29546 TensorFlow: div-by-zero in QuantizedBiasAdd, C/I/A high 7.8 May 14, 2021 MEDIUM CVE-2021-29545 TensorFlow: heap OOB write in sparse tensor DoS 5.5 May 14, 2021 MEDIUM CVE-2021-29544 TensorFlow: DoS via missing tensor rank validation 5.5 May 14, 2021 MEDIUM CVE-2021-29543 TensorFlow: DoS via assertion fail in CTCGreedyDecoder 5.5 May 14, 2021 MEDIUM CVE-2021-29542 TensorFlow: StringNGrams heap overflow crashes ML process 5.5 May 14, 2021 MEDIUM CVE-2021-29541 TensorFlow: null ptr deref DoS in StringNGrams op 5.5 May 14, 2021 HIGH CVE-2021-29540 TensorFlow: heap buffer overflow in Conv2D gradient op 7.8 May 14, 2021 MEDIUM CVE-2021-29539 TensorFlow: type confusion in ImmutableConst causes DoS 5.5 May 14, 2021 MEDIUM CVE-2021-29538 TensorFlow: div-by-zero DoS in Conv2DBackpropFilter 5.5 May 14, 2021 HIGH CVE-2021-29537 TensorFlow: heap overflow in QuantizedResizeBilinear op 7.8 May 14, 2021 HIGH CVE-2021-29536 TensorFlow: heap overflow in QuantizedReshape op 7.8 May 14, 2021 HIGH CVE-2021-29535 TensorFlow: heap overflow in QuantizedMul op 7.8 May 14, 2021 MEDIUM CVE-2021-29534 TensorFlow: DoS via CHECK-fail in SparseConcat op 5.5 May 14, 2021 MEDIUM CVE-2021-29533 TensorFlow: DoS via empty image in DrawBoundingBoxes 5.5 May 14, 2021 HIGH CVE-2021-29532 TensorFlow: heap OOB read via RaggedCross op 7.1 May 14, 2021 MEDIUM CVE-2021-29531 TensorFlow: DoS crash via empty tensor in PNG encoding 5.5 May 14, 2021 HIGH CVE-2021-29530 TensorFlow: null ptr deref in sparse Cholesky ops 7.8 May 14, 2021 HIGH CVE-2021-29529 TensorFlow: heap buffer overflow in quantized image resize 7.8 May 14, 2021 MEDIUM CVE-2021-29528 TensorFlow: DoS via division-by-zero in QuantizedMul 5.5 May 14, 2021

Showing 351–375 of 434

Frequently asked questions

What is TensorFlow?

TensorFlow is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does TensorFlow have?

TensorFlow has 434 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is TensorFlow distributed in?

TensorFlow is distributed via the pip ecosystem and categorized as ml libraries.

Where does the TensorFlow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of TensorFlow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring