AI Threat Alert

Google

432 AI/ML vulnerabilities tracked for Google.

432

Total CVEs

22

Pages

Page 3 of 22

Current

Severity	CVE	Headline	Package	CVSS
HIGH	CVE-2020-26269	TensorFlow: OOB read in glob path matching causes DoS	tensorflow	7.5
LOW	CVE-2020-26270	TensorFlow: DoS via zero-length input to LSTM/GRU on CUDA	tensorflow	3.3
HIGH	CVE-2021-29512	TensorFlow: heap buffer overflow in RaggedBincount op	tensorflow	7.8
MEDIUM	CVE-2021-29554	TensorFlow: divide-by-zero DoS in DenseCountSparseOutput	tensorflow	5.5
HIGH	CVE-2021-29513	TensorFlow: type confusion → null ptr deref (CVSS 7.8)	tensorflow	7.8
HIGH	CVE-2021-29514	TensorFlow: heap buffer overflow in RaggedBincount op	tensorflow	7.8
HIGH	CVE-2021-29515	TensorFlow: NULL ptr deref in MatrixDiag ops (crash/RCE)	tensorflow	7.8
MEDIUM	CVE-2021-29516	TensorFlow: null ptr deref crashes RaggedTensor ops	tensorflow	5.5
MEDIUM	CVE-2021-29517	TensorFlow: Conv3D div-by-zero crashes ML processes	tensorflow	5.5
HIGH	CVE-2021-29518	TensorFlow: null ptr deref in session ops, local RCE	tensorflow	7.8
MEDIUM	CVE-2021-29519	TensorFlow SparseCross: type confusion DoS	tensorflow	5.5
HIGH	CVE-2021-29520	TensorFlow: heap buffer overflow in Conv3DBackprop ops	tensorflow	7.8
MEDIUM	CVE-2021-29521	TensorFlow: DoS crash via negative sparse tensor shape	tensorflow	5.5
MEDIUM	CVE-2021-29522	TensorFlow: Conv3DBackprop div-by-zero crashes training	tensorflow	5.5
MEDIUM	CVE-2021-29523	TensorFlow: DoS via integer overflow in sparse ops	tensorflow	5.5
MEDIUM	CVE-2021-29524	TensorFlow: div-by-zero DoS in Conv2D backprop op	tensorflow	5.5
HIGH	CVE-2021-29525	TensorFlow: div-by-zero DoS in Conv2DBackpropInput	tensorflow	7.8
MEDIUM	CVE-2021-29526	TensorFlow: Conv2D divide-by-zero crashes ML workloads	tensorflow	5.5
MEDIUM	CVE-2021-29527	TensorFlow: divide-by-zero DoS in QuantizedConv2D	tensorflow	5.5
MEDIUM	CVE-2021-29528	TensorFlow: DoS via division-by-zero in QuantizedMul	tensorflow	5.5

Page 3 of 22