AI Threat Alert

TensorFlow Vulnerabilities

pip ML Libraries

67

Risk Score

434

Total CVEs

17

Critical

pip

Ecosystem

Sep 25, 2025

Last CVE

4%

Patch Rate

1372d

Avg Time to Patch

195,126 stars 75,302 forks 5,296 issues 3,685 dependents Last push May 17, 2026

OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 7 of 18)

Severity CVE ID Summary CVSS Published

MEDIUM CVE-2022-23580 TensorFlow: uncontrolled allocation DoS in shape inference 6.5 Feb 4, 2022 MEDIUM CVE-2022-23579 TensorFlow: DoS via Grappler optimizer CHECK failure 6.5 Feb 4, 2022 MEDIUM CVE-2022-23578 TensorFlow: memory leak via invalid graph node 4.3 Feb 4, 2022 MEDIUM CVE-2022-23577 TensorFlow: null pointer deref crashes model loader 6.5 Feb 4, 2022 MEDIUM CVE-2022-23576 TensorFlow: integer overflow in cost estimator causes DoS 6.5 Feb 4, 2022 MEDIUM CVE-2022-23575 TensorFlow: integer overflow in cost estimator → DoS 6.5 Feb 4, 2022 HIGH CVE-2022-23574 TensorFlow: heap OOB read/write enables network RCE 8.8 Feb 4, 2022 HIGH CVE-2022-23573 TensorFlow: uninitialized memory in AssignOp 8.8 Feb 4, 2022 MEDIUM CVE-2022-23572 TensorFlow: DoS via shape inference assertion failure 6.5 Feb 4, 2022 MEDIUM CVE-2022-23571 TensorFlow: protobuf assertion DoS via invalid tensor dtype 6.5 Feb 4, 2022 MEDIUM CVE-2022-23570 TensorFlow: null-deref DoS via malformed protobuf tensor 6.5 Feb 4, 2022 HIGH CVE-2022-23566 TensorFlow: heap OOB write in Grappler, RCE risk 8.8 Feb 4, 2022 MEDIUM CVE-2022-23565 TensorFlow: DoS via malicious SavedModel AttrDef duplication 6.5 Feb 4, 2022 MEDIUM CVE-2022-23564 TensorFlow: DoS via reachable assertion in protobuf decode 6.5 Feb 4, 2022 MEDIUM CVE-2022-23563 TensorFlow: TOC/TOU race allows temp file hijacking 6.3 Feb 4, 2022 HIGH CVE-2022-23562 TensorFlow: Range integer overflow, RCE/DoS risk 8.8 Feb 4, 2022 HIGH CVE-2022-23561 TensorFlow Lite: OOB write, arbitrary write primitive 8.8 Feb 4, 2022 HIGH CVE-2022-23560 TFLite: OOB read/write in sparse tensor → RCE 8.8 Feb 4, 2022 HIGH CVE-2022-23559 TFLite: integer overflow in embedding lookup → heap OOB RW 8.8 Feb 4, 2022 HIGH CVE-2022-23558 TFLite: integer overflow in model loading, RCE risk 8.8 Feb 4, 2022 MEDIUM CVE-2022-23557 TensorFlow TFLite: DoS via divide-by-zero in BiasAndClamp 6.5 Feb 4, 2022 MEDIUM CVE-2022-21741 TensorFlow Lite: DoS via crafted depthwise conv model 6.5 Feb 3, 2022 HIGH CVE-2022-21740 TensorFlow: heap overflow in sparse ops, RCE risk 8.8 Feb 3, 2022 MEDIUM CVE-2022-21739 TensorFlow: QuantizedMaxPool null ptr deref causes DoS 6.5 Feb 3, 2022 MEDIUM CVE-2022-21738 TensorFlow: integer overflow crashes process via sparse op 6.5 Feb 3, 2022

Showing 151–175 of 434

← Previous Next →

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring