TensorFlow Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 434 known vulnerabilities in TensorFlow, 17 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
67
Risk Score
434
Total CVEs
17
Critical
pip
Ecosystem
Sep 25, 2025
Last CVE
4%
Patch Rate
1372d
Avg Time to Patch
195,966 stars 75,187 forks 3,249 issues 3,706 dependents Last push Jun 28, 2026
View on GitHub
OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 7 of 18)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2022-23580 TensorFlow: uncontrolled allocation DoS in shape inference 6.5 Feb 4, 2022 MEDIUM CVE-2022-23579 TensorFlow: DoS via Grappler optimizer CHECK failure 6.5 Feb 4, 2022 MEDIUM CVE-2022-23578 TensorFlow: memory leak via invalid graph node 4.3 Feb 4, 2022 MEDIUM CVE-2022-23577 TensorFlow: null pointer deref crashes model loader 6.5 Feb 4, 2022 MEDIUM CVE-2022-23576 TensorFlow: integer overflow in cost estimator causes DoS 6.5 Feb 4, 2022 MEDIUM CVE-2022-23575 TensorFlow: integer overflow in cost estimator → DoS 6.5 Feb 4, 2022 HIGH CVE-2022-23574 TensorFlow: heap OOB read/write enables network RCE 8.8 Feb 4, 2022 HIGH CVE-2022-23573 TensorFlow: uninitialized memory in AssignOp 8.8 Feb 4, 2022 MEDIUM CVE-2022-23572 TensorFlow: DoS via shape inference assertion failure 6.5 Feb 4, 2022 MEDIUM CVE-2022-23571 TensorFlow: protobuf assertion DoS via invalid tensor dtype 6.5 Feb 4, 2022 MEDIUM CVE-2022-23570 TensorFlow: null-deref DoS via malformed protobuf tensor 6.5 Feb 4, 2022 HIGH CVE-2022-23566 TensorFlow: heap OOB write in Grappler, RCE risk 8.8 Feb 4, 2022 MEDIUM CVE-2022-23565 TensorFlow: DoS via malicious SavedModel AttrDef duplication 6.5 Feb 4, 2022 MEDIUM CVE-2022-23564 TensorFlow: DoS via reachable assertion in protobuf decode 6.5 Feb 4, 2022 MEDIUM CVE-2022-23563 TensorFlow: TOC/TOU race allows temp file hijacking 6.3 Feb 4, 2022 HIGH CVE-2022-23562 TensorFlow: Range integer overflow, RCE/DoS risk 8.8 Feb 4, 2022 HIGH CVE-2022-23561 TensorFlow Lite: OOB write, arbitrary write primitive 8.8 Feb 4, 2022 HIGH CVE-2022-23560 TFLite: OOB read/write in sparse tensor → RCE 8.8 Feb 4, 2022 HIGH CVE-2022-23559 TFLite: integer overflow in embedding lookup → heap OOB RW 8.8 Feb 4, 2022 HIGH CVE-2022-23558 TFLite: integer overflow in model loading, RCE risk 8.8 Feb 4, 2022 MEDIUM CVE-2022-23557 TensorFlow TFLite: DoS via divide-by-zero in BiasAndClamp 6.5 Feb 4, 2022 MEDIUM CVE-2022-21741 TensorFlow Lite: DoS via crafted depthwise conv model 6.5 Feb 3, 2022 HIGH CVE-2022-21740 TensorFlow: heap overflow in sparse ops, RCE risk 8.8 Feb 3, 2022 MEDIUM CVE-2022-21739 TensorFlow: QuantizedMaxPool null ptr deref causes DoS 6.5 Feb 3, 2022 MEDIUM CVE-2022-21738 TensorFlow: integer overflow crashes process via sparse op 6.5 Feb 3, 2022

Showing 151–175 of 434

Frequently asked questions

What is TensorFlow?

TensorFlow is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does TensorFlow have?

TensorFlow has 434 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is TensorFlow distributed in?

TensorFlow is distributed via the pip ecosystem and categorized as ml libraries.

Where does the TensorFlow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of TensorFlow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring