TensorFlow Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 434 known vulnerabilities in TensorFlow, 17 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
67
Risk Score
434
Total CVEs
17
Critical
pip
Ecosystem
Sep 25, 2025
Last CVE
4%
Patch Rate
1372d
Avg Time to Patch
195,966 stars 75,187 forks 3,249 issues 3,706 dependents Last push Jun 28, 2026
View on GitHub
OpenSSF Scorecard 7.2/10

Known Vulnerabilities (434 total, page 8 of 18)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2022-21737 TensorFlow: DoS via malformed Bincount arguments 6.5 Feb 3, 2022 MEDIUM CVE-2022-23569 TensorFlow: DoS via reachable assertions in ML ops 6.5 Feb 3, 2022 MEDIUM CVE-2022-21735 TensorFlow: DoS via FractionalMaxPool div-by-zero 6.5 Feb 3, 2022 MEDIUM CVE-2022-21734 TensorFlow: DoS via MapStage non-scalar key crash 6.5 Feb 3, 2022 MEDIUM CVE-2022-21729 TensorFlow: UnravelIndex integer overflow → DoS 6.5 Feb 3, 2022 MEDIUM CVE-2022-21725 TensorFlow: DoS via div-by-zero in conv cost estimator 6.5 Feb 3, 2022 MEDIUM CVE-2022-23568 TensorFlow: integer overflow DoS in sparse tensor ops 6.5 Feb 3, 2022 MEDIUM CVE-2022-23567 TensorFlow: integer overflow DoS in sparse tensor ops 6.5 Feb 3, 2022 MEDIUM CVE-2022-21736 TensorFlow: NULL deref DoS via SparseTensorSliceDataset 6.5 Feb 3, 2022 MEDIUM CVE-2022-21733 TensorFlow: StringNGrams integer overflow enables OOM DoS 6.5 Feb 3, 2022 MEDIUM CVE-2022-21732 TensorFlow: ThreadPoolHandle DoS via memory exhaustion 6.5 Feb 3, 2022 MEDIUM CVE-2022-21731 TensorFlow: ConcatV2 type confusion enables remote DoS 6.5 Feb 3, 2022 HIGH CVE-2022-21730 TensorFlow: OOB read leaks heap memory, enables DoS 8.1 Feb 3, 2022 HIGH CVE-2022-21728 TensorFlow: heap OOB read in ReverseSequence op 8.1 Feb 3, 2022 HIGH CVE-2022-21727 TensorFlow: Dequantize integer overflow, RCE risk 8.8 Feb 3, 2022 HIGH CVE-2022-21726 TensorFlow: heap OOB read in Dequantize op allows RCE 8.8 Feb 3, 2022 HIGH CVE-2021-41228 TensorFlow: eval() in saved_model_cli allows RCE 7.8 Nov 5, 2021 MEDIUM CVE-2021-41227 TensorFlow: OOB read in ImmutableConst leaks memory 5.5 Nov 5, 2021 HIGH CVE-2021-41225 TensorFlow Grappler: uninitialized var, local priv-esc 7.8 Nov 5, 2021 MEDIUM CVE-2021-41222 TensorFlow: SplitV negative arg segfault crashes process 5.5 Nov 5, 2021 HIGH CVE-2021-41221 TensorFlow: CuDNN heap overflow, local code execution 7.8 Nov 5, 2021 HIGH CVE-2021-41220 TensorFlow: use-after-free in async collective ops 7.8 Nov 5, 2021 HIGH CVE-2021-41216 TensorFlow: heap overflow in Transpose via negative perm 7.8 Nov 5, 2021 MEDIUM CVE-2021-41213 TensorFlow: tf.function deadlock enables DoS via model load 5.5 Nov 5, 2021 MEDIUM CVE-2021-41218 TensorFlow: AllToAll DoS via divide-by-zero crash 5.5 Nov 5, 2021

Showing 176–200 of 434

Frequently asked questions

What is TensorFlow?

TensorFlow is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does TensorFlow have?

TensorFlow has 434 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is TensorFlow distributed in?

TensorFlow is distributed via the pip ecosystem and categorized as ml libraries.

Where does the TensorFlow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of TensorFlow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor TensorFlow in your stack

Get instant alerts when new vulnerabilities affect TensorFlow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring