Vulnerabilities > CVE-2021-33651 - Divide By Zero vulnerability in Mindspore

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

mindspore

CWE-369

NVD

Published: 2022-06-27

Updated: 2024-11-21

Summary

When performing the analytical operation of the DepthwiseConv2D operator, if the attribute depth_multiplier is 0, it will cause a division by 0 exception.

Vulnerable Configurations

Part	Description	Count
Application	Mindspore Mindspore Mindspore 1.1.0 Mindspore Mindspore 1.1.1 Mindspore Mindspore 1.2.0 Mindspore Mindspore 1.2.1	5

Common Weakness Enumeration (CWE)

CWE-369 - Divide By Zero

References

https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-004_en.md
https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-004_en.md