CVE-2022-23592
Out of bounds read in Tensorflow
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Tensorflow is an Open Source Machine Learning Framework. TensorFlow's type inference can cause a heap out of bounds read as the bounds checking is done in a `DCHECK` (which is a no-op during production). An attacker can control the `input_idx` variable such that `ix` would be larger than the number of values in `node_t.args`. The fix will be included in TensorFlow 2.8.0. This is the only affected version.
TensorFlow es un Marco de Aprendizaje Automático de Código Abierto. La inferencia de tipos de TensorFlow puede causar una lectura fuera de los límites de la pila, ya que la comprobación de los límites se realiza en un "DCHECK" (que es un no-op durante la producción). Un atacante puede controlar la variable "input_idx" de forma que "ix" sea mayor que el número de valores en "node_t.args". La corrección será incluida en TensorFlow versión 2.8.0. Esta es la única versión afectada
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-01-19 CVE Reserved
- 2022-02-04 CVE Published
- 2024-05-10 EPSS Updated
- 2024-11-13 CVE Updated
- 2024-11-13 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-125: Out-of-bounds Read
CAPEC
References (3)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/tensorflow/tensorflow/blob/274df9b02330b790aa8de1cee164b70f72b9b244/tensorflow/core/graph/graph.cc#L223-L229 | 2024-11-13 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Google Search vendor "Google" | Tensorflow Search vendor "Google" for product "Tensorflow" | >= 2.7.0 < 2.8.0 Search vendor "Google" for product "Tensorflow" and version " >= 2.7.0 < 2.8.0" | - |
Affected
| ||||||