AI Threat Alert

Google

432 AI/ML vulnerabilities tracked for Google.

432

Total CVEs

22

Pages

Page 11 of 22

Current

Severity	CVE	Headline	Package	CVSS
HIGH	CVE-2021-37679	TensorFlow: heap over-read leaks memory via RaggedTensor	tensorflow	7.8
HIGH	CVE-2021-37682	TFLite: uninitialized quant params corrupt inference	tensorflow	7.1
MEDIUM	CVE-2021-37683	TFLite: division by zero DoS in inference kernels	tensorflow	5.5
MEDIUM	CVE-2021-37684	TensorFlow TFLite: DoS via division by zero in pooling	tensorflow	5.5
MEDIUM	CVE-2021-37685	TensorFlow Lite: OOB read leaks heap memory in expand_dims	tensorflow	5.5
MEDIUM	CVE-2021-37687	TFLite: heap OOB read via negative indices in GatherNd	tensorflow	5.5
MEDIUM	CVE-2021-37691	TensorFlow TFLite: DoS via crafted model in LSH kernel	tensorflow	5.5
MEDIUM	CVE-2021-37692	TensorFlow: string tensor GC segfault causes process DoS	tensorflow	5.5
MEDIUM	CVE-2021-37690	TensorFlow: use-after-free crashes training processes	tensorflow	6.6
MEDIUM	CVE-2021-41195	TensorFlow: integer overflow in segment ops causes DoS	tensorflow	5.5
MEDIUM	CVE-2021-41196	TensorFlow: integer underflow crashes Keras pooling layers	tensorflow	5.5
MEDIUM	CVE-2021-41197	TensorFlow: integer overflow in tensor dims causes DoS	tensorflow	5.5
MEDIUM	CVE-2021-41198	TensorFlow: tf.tile integer overflow crashes ML process	tensorflow	5.5
MEDIUM	CVE-2021-41199	TensorFlow: tf.image.resize integer overflow DoS	tensorflow	5.5
MEDIUM	CVE-2021-41200	TensorFlow: DoS crash in tf.summary file writer	tensorflow	5.5
HIGH	CVE-2021-41201	TensorFlow: uninitialized var in Einsum allows local RCE	tensorflow	7.8
HIGH	CVE-2021-41210	TensorFlow: heap OOB read in SparseCountSparseOutput	tensorflow	7.1
HIGH	CVE-2021-41203	TensorFlow: malformed checkpoint triggers overflow/crash	tensorflow	7.8
MEDIUM	CVE-2021-41204	TensorFlow: DoS via Grappler constant folding segfault	tensorflow	5.5
HIGH	CVE-2021-41205	TensorFlow: heap OOB read in quantize ops, DoS+leak	tensorflow	7.1

Page 11 of 22