AI Threat Alert

TensorFlow Vulnerabilities

pip ML Libraries

67

Risk Score

434

Total CVEs

17

Critical

pip

Ecosystem

Sep 25, 2025

Last CVE

4%

Patch Rate

1372d

Avg Time to Patch

195,126 stars 75,302 forks 5,296 issues 3,685 dependents Last push May 17, 2026

OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 5 of 18)

Severity CVE ID Summary CVSS Published

HIGH CVE-2022-35963 TensorFlow: DoS via FractionalAvgPoolGrad overflow 7.5 Sep 16, 2022 HIGH CVE-2022-35960 TensorFlow: DoS via malformed TensorListReserve input 7.5 Sep 16, 2022 HIGH CVE-2022-35959 TensorFlow: DoS via AvgPool3DGradOp input overflow 7.5 Sep 16, 2022 HIGH CVE-2022-35952 TensorFlow: DoS via UnbatchGradOp assertion crash 7.5 Sep 16, 2022 HIGH CVE-2022-35941 TensorFlow: DoS via negative ksize in AvgPoolOp 7.5 Sep 16, 2022 HIGH CVE-2022-35940 TensorFlow: integer overflow in RaggedRangeOp crashes service 7.5 Sep 16, 2022 CRITICAL CVE-2022-35939 TensorFlow: ScatterNd OOB write enables RCE/crash 9.8 Sep 16, 2022 CRITICAL CVE-2022-35938 TensorFlow: OOB read in GatherNd causes crash/data leak 9.1 Sep 16, 2022 CRITICAL CVE-2022-35937 TensorFlow: GatherNd OOB read crashes inference servers 9.1 Sep 16, 2022 HIGH CVE-2022-35935 TensorFlow: DoS via SobolSample CHECK-failure 7.5 Sep 16, 2022 HIGH CVE-2022-35934 TensorFlow: tf.reshape DoS via integer overflow 7.5 Sep 16, 2022 HIGH CVE-2022-29216 TensorFlow CLI: eval() injection enables reverse shell 7.8 May 21, 2022 MEDIUM CVE-2022-29213 TensorFlow: input validation DoS in FFT signal ops 5.5 May 21, 2022 MEDIUM CVE-2022-29212 TensorFlow Lite: quantization assert crash (DoS) 5.5 May 21, 2022 MEDIUM CVE-2022-29211 TensorFlow: NaN input crashes histogram op (CPU DoS) 5.5 May 21, 2022 MEDIUM CVE-2022-29210 TensorFlow: heap OOB in TensorKey causes DoS 5.5 May 21, 2022 MEDIUM CVE-2022-29209 TensorFlow: CHECK macro type confusion causes DoS 5.5 May 21, 2022 HIGH CVE-2022-29208 TensorFlow: OOB write in EditDistance enables local DoS 7.1 May 20, 2022 MEDIUM CVE-2022-29206 TensorFlow: SparseTensorDenseAdd null ptr deref DoS 5.5 May 20, 2022 MEDIUM CVE-2022-29205 TensorFlow: NULL deref DoS via compat.v1 ops 5.5 May 20, 2022 MEDIUM CVE-2022-29204 TensorFlow: DoS via UnsortedSegmentJoin input validation 5.5 May 20, 2022 MEDIUM CVE-2022-29203 TensorFlow: DoS via SpaceToBatchND integer overflow 5.5 May 20, 2022 MEDIUM CVE-2022-29202 TensorFlow: DoS via ragged tensor memory exhaustion 5.5 May 20, 2022 MEDIUM CVE-2022-29201 TensorFlow: QuantizedConv2D null deref crashes model server 5.5 May 20, 2022 MEDIUM CVE-2022-29207 TensorFlow: null-ptr deref in eager mode causes DoS 5.5 May 20, 2022

Showing 101–125 of 434

← Previous Next →

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring