TensorFlow Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 434 known vulnerabilities in TensorFlow, 17 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
67
Risk Score
434
Total CVEs
17
Critical
pip
Ecosystem
Sep 25, 2025
Last CVE
4%
Patch Rate
1372d
Avg Time to Patch
195,966 stars 75,187 forks 3,249 issues 3,706 dependents Last push Jun 28, 2026
View on GitHub
OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 5 of 18)

Severity CVE ID Summary CVSS Published
HIGH CVE-2022-35963 TensorFlow: DoS via FractionalAvgPoolGrad overflow 7.5 Sep 16, 2022 HIGH CVE-2022-35960 TensorFlow: DoS via malformed TensorListReserve input 7.5 Sep 16, 2022 HIGH CVE-2022-35959 TensorFlow: DoS via AvgPool3DGradOp input overflow 7.5 Sep 16, 2022 HIGH CVE-2022-35952 TensorFlow: DoS via UnbatchGradOp assertion crash 7.5 Sep 16, 2022 HIGH CVE-2022-35941 TensorFlow: DoS via negative ksize in AvgPoolOp 7.5 Sep 16, 2022 HIGH CVE-2022-35940 TensorFlow: integer overflow in RaggedRangeOp crashes service 7.5 Sep 16, 2022 CRITICAL CVE-2022-35939 TensorFlow: ScatterNd OOB write enables RCE/crash 9.8 Sep 16, 2022 CRITICAL CVE-2022-35938 TensorFlow: OOB read in GatherNd causes crash/data leak 9.1 Sep 16, 2022 CRITICAL CVE-2022-35937 TensorFlow: GatherNd OOB read crashes inference servers 9.1 Sep 16, 2022 HIGH CVE-2022-35935 TensorFlow: DoS via SobolSample CHECK-failure 7.5 Sep 16, 2022 HIGH CVE-2022-35934 TensorFlow: tf.reshape DoS via integer overflow 7.5 Sep 16, 2022 HIGH CVE-2022-29216 TensorFlow CLI: eval() injection enables reverse shell 7.8 May 21, 2022 MEDIUM CVE-2022-29213 TensorFlow: input validation DoS in FFT signal ops 5.5 May 21, 2022 MEDIUM CVE-2022-29212 TensorFlow Lite: quantization assert crash (DoS) 5.5 May 21, 2022 MEDIUM CVE-2022-29211 TensorFlow: NaN input crashes histogram op (CPU DoS) 5.5 May 21, 2022 MEDIUM CVE-2022-29210 TensorFlow: heap OOB in TensorKey causes DoS 5.5 May 21, 2022 MEDIUM CVE-2022-29209 TensorFlow: CHECK macro type confusion causes DoS 5.5 May 21, 2022 HIGH CVE-2022-29208 TensorFlow: OOB write in EditDistance enables local DoS 7.1 May 20, 2022 MEDIUM CVE-2022-29206 TensorFlow: SparseTensorDenseAdd null ptr deref DoS 5.5 May 20, 2022 MEDIUM CVE-2022-29205 TensorFlow: NULL deref DoS via compat.v1 ops 5.5 May 20, 2022 MEDIUM CVE-2022-29204 TensorFlow: DoS via UnsortedSegmentJoin input validation 5.5 May 20, 2022 MEDIUM CVE-2022-29203 TensorFlow: DoS via SpaceToBatchND integer overflow 5.5 May 20, 2022 MEDIUM CVE-2022-29202 TensorFlow: DoS via ragged tensor memory exhaustion 5.5 May 20, 2022 MEDIUM CVE-2022-29201 TensorFlow: QuantizedConv2D null deref crashes model server 5.5 May 20, 2022 MEDIUM CVE-2022-29207 TensorFlow: null-ptr deref in eager mode causes DoS 5.5 May 20, 2022

Showing 101–125 of 434

Frequently asked questions

What is TensorFlow?

TensorFlow is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does TensorFlow have?

TensorFlow has 434 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is TensorFlow distributed in?

TensorFlow is distributed via the pip ecosystem and categorized as ml libraries.

Where does the TensorFlow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of TensorFlow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring