Vulnerabilities > Google > Tensorflow > 1.9.0

DATE CVE VULNERABILITY TITLE RISK
2020-09-25 CVE-2020-15194 In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `SparseFillEmptyRowsGrad` implementation has incomplete validation of the shapes of its arguments.
network
low complexity
google opensuse
5.3
2020-09-25 CVE-2020-15190 In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `tf.raw_ops.Switch` operation takes as input a tensor and a boolean and outputs two tensors.
network
low complexity
google opensuse
5.3
2020-01-28 CVE-2020-5215 Improper Input Validation vulnerability in Google Tensorflow
In TensorFlow before 1.15.2 and 2.0.1, converting a string (from Python) to a tf.float16 value results in a segmentation fault in eager mode as the format checks for this use case are only in the graph mode.
network
low complexity
google CWE-20
7.5
2019-12-16 CVE-2019-16778 Incorrect Conversion between Numeric Types vulnerability in Google Tensorflow
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32.
network
low complexity
google CWE-681
critical
9.8
2019-04-24 CVE-2019-9635 NULL Pointer Dereference vulnerability in Google Tensorflow
NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file.
network
low complexity
google CWE-476
6.5