Vulnerabilities > CVE-2021-33652 - Divide By Zero vulnerability in Mindspore

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

mindspore

CWE-369

NVD

Published: 2022-06-27

Updated: 2022-07-07

Summary

When the Reduce operator run operation is executed, if there is a value of 0 in the parameter axis_sizes element, it will cause a division by 0 exception.

Vulnerable Configurations

Part	Description	Count
Application	Mindspore Mindspore Mindspore 1.0.0 Mindspore Mindspore 1.0.1 Mindspore Mindspore 1.1.0 Mindspore Mindspore 1.1.1 Mindspore Mindspore 1.2.0 Mindspore Mindspore 1.2.1 Mindspore Mindspore 0.7.0	8

Common Weakness Enumeration (CWE)

CWE-369 - Divide By Zero

References

https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-003_en.md