TensorFlow Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 434 known vulnerabilities in TensorFlow, 17 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
67
Risk Score
434
Total CVEs
17
Critical
pip
Ecosystem
Sep 25, 2025
Last CVE
4%
Patch Rate
1372d
Avg Time to Patch
196,043 stars 75,281 forks 2,636 issues 3,737 dependents Last push Jul 5, 2026
View on GitHub
OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 16 of 18)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2021-29527 TensorFlow: divide-by-zero DoS in QuantizedConv2D 5.5 May 14, 2021 MEDIUM CVE-2021-29526 TensorFlow: Conv2D divide-by-zero crashes ML workloads 5.5 May 14, 2021 HIGH CVE-2021-29525 TensorFlow: div-by-zero DoS in Conv2DBackpropInput 7.8 May 14, 2021 MEDIUM CVE-2021-29524 TensorFlow: div-by-zero DoS in Conv2D backprop op 5.5 May 14, 2021 MEDIUM CVE-2021-29523 TensorFlow: DoS via integer overflow in sparse ops 5.5 May 14, 2021 MEDIUM CVE-2021-29522 TensorFlow: Conv3DBackprop div-by-zero crashes training 5.5 May 14, 2021 MEDIUM CVE-2021-29521 TensorFlow: DoS crash via negative sparse tensor shape 5.5 May 14, 2021 HIGH CVE-2021-29520 TensorFlow: heap buffer overflow in Conv3DBackprop ops 7.8 May 14, 2021 MEDIUM CVE-2021-29519 TensorFlow SparseCross: type confusion DoS 5.5 May 14, 2021 HIGH CVE-2021-29518 TensorFlow: null ptr deref in session ops, local RCE 7.8 May 14, 2021 MEDIUM CVE-2021-29517 TensorFlow: Conv3D div-by-zero crashes ML processes 5.5 May 14, 2021 MEDIUM CVE-2021-29516 TensorFlow: null ptr deref crashes RaggedTensor ops 5.5 May 14, 2021 HIGH CVE-2021-29515 TensorFlow: NULL ptr deref in MatrixDiag ops (crash/RCE) 7.8 May 14, 2021 HIGH CVE-2021-29514 TensorFlow: heap buffer overflow in RaggedBincount op 7.8 May 14, 2021 HIGH CVE-2021-29513 TensorFlow: type confusion → null ptr deref (CVSS 7.8) 7.8 May 14, 2021 MEDIUM CVE-2021-29554 TensorFlow: divide-by-zero DoS in DenseCountSparseOutput 5.5 May 14, 2021 HIGH CVE-2021-29512 TensorFlow: heap buffer overflow in RaggedBincount op 7.8 May 14, 2021 LOW CVE-2020-26270 TensorFlow: DoS via zero-length input to LSTM/GRU on CUDA 3.3 Dec 10, 2020 HIGH CVE-2020-26269 TensorFlow: OOB read in glob path matching causes DoS 7.5 Dec 10, 2020 MEDIUM CVE-2020-26268 TensorFlow: ImmutableConst segfault crashes Python interpreter 4.4 Dec 10, 2020 HIGH CVE-2020-26267 TensorFlow: OOB read in DataFormatVecPermute op 7.8 Dec 10, 2020 MEDIUM CVE-2020-26266 TensorFlow: uninitialized memory read via crafted SavedModel 5.3 Dec 10, 2020 LOW CVE-2020-26271 TensorFlow: OOB read on saved model load leaks heap addresses 3.3 Dec 10, 2020 HIGH CVE-2020-15266 TensorFlow: NaN-triggered DoS in crop_and_resize op 7.5 Oct 21, 2020 HIGH CVE-2020-15265 TensorFlow: OOB read DoS via invalid quantize axis 7.5 Oct 21, 2020

Showing 376–400 of 434

Frequently asked questions

What is TensorFlow?

TensorFlow is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does TensorFlow have?

TensorFlow has 434 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is TensorFlow distributed in?

TensorFlow is distributed via the pip ecosystem and categorized as ml libraries.

Where does the TensorFlow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of TensorFlow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring