AI Threat Alert

Google

432 AI/ML vulnerabilities tracked for Google.

432

Total CVEs

22

Pages

Page 7 of 22

Current

Severity	CVE	Headline	Package	CVSS
HIGH	CVE-2021-29590	TensorFlow TFLite: OOB read via empty tensor in Min/Max ops	tensorflow	7.1
HIGH	CVE-2021-29591	TFLite: crafted model causes infinite loop / stack overflow	tensorflow	7.8
HIGH	CVE-2021-29592	TensorFlow Lite: null-ptr deref in Reshape via 1D tensor	tensorflow	7.8
HIGH	CVE-2021-29593	TensorFlow TFLite: div-by-zero via crafted model file	tensorflow	7.8
HIGH	CVE-2021-29594	TFLite: divide-by-zero in conv allows code execution	tensorflow	7.8
HIGH	CVE-2021-29595	TensorFlow TFLite: crash/RCE via malicious model file	tensorflow	7.8
HIGH	CVE-2021-29596	TensorFlow TFLite: div-by-zero in EmbeddingLookup op	tensorflow	7.8
HIGH	CVE-2021-29597	TensorFlow TFLite: div-by-zero crash via crafted model	tensorflow	7.8
HIGH	CVE-2021-29598	TensorFlow TFLite: SVDF div-by-zero enables RCE	tensorflow	7.8
HIGH	CVE-2021-29599	TFLite Split: malicious model triggers div-by-zero (DoS/RCE)	tensorflow	7.8
HIGH	CVE-2021-29600	TensorFlow TFLite: div-by-zero via crafted OneHot model	tensorflow	7.8
HIGH	CVE-2021-29601	TensorFlow Lite: integer overflow in model concatenation	tensorflow	7.1
MEDIUM	CVE-2021-29602	TensorFlow TFLite: DepthwiseConv division-by-zero DoS	tensorflow	5.5
HIGH	CVE-2021-29603	TensorFlow TFLite: heap OOB write via malformed model	tensorflow	7.8
MEDIUM	CVE-2021-29604	TFLite: DoS via division by zero in hashtable lookup	tensorflow	5.5
MEDIUM	CVE-2021-29605	TFLite: integer overflow DoS via crafted model file	tensorflow	5.5
HIGH	CVE-2021-29606	TensorFlow Lite: OOB read via crafted TFLite model	tensorflow	7.8
HIGH	CVE-2021-29607	TensorFlow: heap OOB write in SparseAdd op	tensorflow	7.8
HIGH	CVE-2021-29608	TensorFlow: heap OOB in RaggedTensorToTensor op	tensorflow	7.8
HIGH	CVE-2021-29609	TensorFlow: SparseAdd heap OOB write and null deref	tensorflow	7.8

Page 7 of 22