TensorFlow Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 434 known vulnerabilities in TensorFlow, 17 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
67
Risk Score
434
Total CVEs
17
Critical
pip
Ecosystem
Sep 25, 2025
Last CVE
4%
Patch Rate
1372d
Avg Time to Patch
195,966 stars 75,187 forks 3,249 issues 3,706 dependents Last push Jun 28, 2026
View on GitHub
OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 4 of 18)

Severity CVE ID Summary CVSS Published
HIGH CVE-2022-36026 TensorFlow: DoS via QuantizeAndDequantizeV3 CHECK fail 7.5 Sep 16, 2022 HIGH CVE-2022-36019 TensorFlow: DoS via FakeQuant tensor rank mismatch 7.5 Sep 16, 2022 HIGH CVE-2022-36018 TensorFlow: RaggedTensor CHECK fail remote DoS 7.5 Sep 16, 2022 HIGH CVE-2022-35990 TensorFlow: DoS via quantization gradient rank check 7.5 Sep 16, 2022 HIGH CVE-2022-35989 TensorFlow: MaxPool GPU kernel DoS via oversized ksize 7.5 Sep 16, 2022 HIGH CVE-2022-35988 TensorFlow: GPU DoS via empty input to matrix_rank op 7.5 Sep 16, 2022 HIGH CVE-2022-35987 TensorFlow: DoS via DenseBincount shape mismatch 7.5 Sep 16, 2022 HIGH CVE-2022-35986 TensorFlow: RaggedBincount DoS crashes inference server 7.5 Sep 16, 2022 HIGH CVE-2022-35985 TensorFlow: DoS via malformed LRNGrad tensor input 7.5 Sep 16, 2022 HIGH CVE-2022-35984 TensorFlow: int64 type mismatch triggers remote DoS 7.5 Sep 16, 2022 HIGH CVE-2022-35983 TensorFlow: DoS via Save/SaveSlices dtype CHECK fail 7.5 Sep 16, 2022 HIGH CVE-2022-35982 TensorFlow: DoS via invalid SparseBincount input 7.5 Sep 16, 2022 HIGH CVE-2022-35981 TensorFlow: DoS via FractionalMaxPoolGrad assertion 7.5 Sep 16, 2022 HIGH CVE-2022-35979 TensorFlow: DoS via nonscalar input in QuantizedRelu 7.5 Sep 16, 2022 HIGH CVE-2022-35974 TensorFlow: DoS via nonscalar quantization op input 7.5 Sep 16, 2022 HIGH CVE-2022-35973 TensorFlow: DoS via QuantizedMatMul input validation 7.5 Sep 16, 2022 HIGH CVE-2022-35972 TensorFlow: DoS via QuantizedBiasAdd rank validation 7.5 Sep 16, 2022 HIGH CVE-2022-35971 TensorFlow: DoS via invalid quantization tensor rank 7.5 Sep 16, 2022 HIGH CVE-2022-35970 TensorFlow: DoS via malformed QuantizedInstanceNorm tensors 7.5 Sep 16, 2022 HIGH CVE-2022-35969 TensorFlow: DoS via malformed Conv2DBackpropInput 7.5 Sep 16, 2022 HIGH CVE-2022-35968 TensorFlow: DoS via AvgPoolGrad shape validation failure 7.5 Sep 16, 2022 HIGH CVE-2022-35967 TensorFlow: DoS via QuantizedAdd tensor rank flaw 7.5 Sep 16, 2022 HIGH CVE-2022-35966 TensorFlow: DoS via QuantizedAvgPool input validation 7.5 Sep 16, 2022 HIGH CVE-2022-35965 TensorFlow: NULL deref DoS via empty tensor input 7.5 Sep 16, 2022 HIGH CVE-2022-35964 TensorFlow: remote DoS via BlockLSTMGradV2 validation 7.5 Sep 16, 2022

Showing 76–100 of 434

Frequently asked questions

What is TensorFlow?

TensorFlow is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does TensorFlow have?

TensorFlow has 434 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is TensorFlow distributed in?

TensorFlow is distributed via the pip ecosystem and categorized as ml libraries.

Where does the TensorFlow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of TensorFlow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring