A vulnerability, which was classified as problematic, was found in Google TensorFlow up to 2.3.3/2.4.2/2.5.0 (Artificial Intelligence Software). This affects the function tf.raw_ops.RaggedGather. Upgrading to version 2.3.4, 2.4.3, 2.5.1 or 2.6.0 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.
Google TensorFlow up to 2.3.3/2.4.2/2.5.0 tf.raw_ops.RaggedGather out-of-bounds read
- Virtual Patching
- August 13, 2021
- 6:04 am
- Virtual Patching
- August 13, 2021
- 6:04 am
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2023-5288 : SICK SIM1012 Access Control
Description A remote unauthorized attacker may connect to the SIM1012, interact with the device and change configuration settings. The adversary
CVE-2023-44466 : Linux Kernel up to 6.4.4 Ceph File System net/ceph/messenger_v2.c Buffer Overflow
Description An issue was discovered in net/ceph/messenger_v2.c in the Linux kernel before 6.4.5. There is an integer signedness error, leading
CVE-2023-20252 : CISCO CATALYST SD-WAN MANAGER SAML API IMPROPER AUTHENTICATION
Description A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an