• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞CVE漏洞

CVE漏洞

RSS
  • CVE-2021-41211
    CVE-2021-41211
    TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whe ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:18 | 回复:0
  • CVE-2021-41212
    CVE-2021-41212
    TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `tf.ragged.cross` can trigger a read outside of bounds of heap allocated array. The fix wi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:26 | 回复:0
  • CVE-2021-41214
    CVE-2021-41214
    TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `tf.ragged.cross` has an undefined behavior due to binding a reference to `nullptr`. The f ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:17 | 回复:0
  • CVE-2021-41215
    CVE-2021-41215
    TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `DeserializeSparse` can trigger a null pointer dereference. This is because the shape infe ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:19 | 回复:0
  • CVE-2021-41217
    CVE-2021-41217
    TensorFlow is an open source platform for machine learning. In affected versions the process of building the control flow graph for a TensorFlow model is vulnerable to a null pointer exception when no ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:22 | 回复:0
  • CVE-2021-41219
    CVE-2021-41219
    TensorFlow is an open source platform for machine learning. In affected versions the code for sparse matrix multiplication is vulnerable to undefined behavior via binding a reference to `nullptr`. Thi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:24 | 回复:0
  • CVE-2021-41223
    CVE-2021-41223
    TensorFlow is an open source platform for machine learning. In affected versions the implementation of `FusedBatchNorm` kernels is vulnerable to a heap OOB access. The fix will be included in TensorFl ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:19 | 回复:0
  • CVE-2021-41224
    CVE-2021-41224
    TensorFlow is an open source platform for machine learning. In affected versions the implementation of `SparseFillEmptyRows` can be made to trigger a heap OOB access. This occurs whenever the size of ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:12 | 回复:0
  • CVE-2021-41226
    CVE-2021-41226
    TensorFlow is an open source platform for machine learning. In affected versions the implementation of `SparseBinCount` is vulnerable to a heap OOB access. This is because of missing validation betwee ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:16 | 回复:0
  • CVE-2021-42359
    CVE-2021-42359
    WP DSGVO Tools (GDPR) = 3.1.23 had an AJAX action, ‘admin-dismiss-unsubscribe‘, which lacked a capability check and a nonce check and was available to unauthenticated users, and did not check the po ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:8 | 回复:0
  • CVE-2021-41202
    CVE-2021-41202
    TensorFlow is an open source platform for machine learning. In affected versions while calculating the size of the output within the `tf.range` kernel, there is a conditional statement of type `int64 ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:13 | 回复:0
  • CVE-2021-41206
    CVE-2021-41206
    TensorFlow is an open source platform for machine learning. In affected versions several TensorFlow operations are missing validation for the shapes of the tensor arguments involved in the call. Depen ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:7 | 回复:0
  • CVE-2021-41207
    CVE-2021-41207
    TensorFlow is an open source platform for machine learning. In affected versions the implementation of `ParallelConcat` misses some input validation and can produce a division by 0. The fix will be in ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:6 | 回复:0
  • CVE-2021-41208
    CVE-2021-41208
    TensorFlow is an open source platform for machine learning. In affected versions the code for boosted trees in TensorFlow is still missing validation. As a result, attackers can trigger denial of serv ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:9 | 回复:0
  • CVE-2021-41209
    CVE-2021-41209
    TensorFlow is an open source platform for machine learning. In affected versions the implementations for convolution operators trigger a division by 0 if passed empty filter tensor arguments. The fix ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:13 | 回复:0
  • CVE-2021-41218
    CVE-2021-41218
    TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `AllToAll` can be made to execute a division by 0. This occurs whenever the `split_count` ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:10 | 回复:0
  • CVE-2020-22222
    CVE-2020-22222
    Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the pjActionLoadCss function.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:13 | 回复:0
  • CVE-2020-22223
    CVE-2020-22223
    Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionLoad function.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:10 | 回复:0
  • CVE-2020-22224
    CVE-2020-22224
    Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the pjActionPreview function.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:12 | 回复:0
  • CVE-2020-22225
    CVE-2020-22225
    Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionLoadForm function.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:30 | 回复:0
  • CVE-2020-22226
    CVE-2020-22226
    Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionSetAmount function.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:7 | 回复:0
  • CVE-2021-41213
    CVE-2021-41213
    TensorFlow is an open source platform for machine learning. In affected versions the code behind `tf.function` API can be made to deadlock when two `tf.function` decorated Python functions are mutuall ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:12 | 回复:0
  • CVE-2021-41216
    CVE-2021-41216
    TensorFlow is an open source platform for machine learning. In affected versions the shape inference function for `Transpose` is vulnerable to a heap buffer overflow. This occurs whenever `perm` conta ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:34 | 回复:0
  • CVE-2021-41220
    CVE-2021-41220
    TensorFlow is an open source platform for machine learning. In affected versions the async implementation of `CollectiveReduceV2` suffers from a memory leak and a use after free. This occurs due to th ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:23 | 回复:0
  • CVE-2021-41221
    CVE-2021-41221
    TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for the `Cudnn*` operations in TensorFlow can be tricked into accessing invalid memory, via a ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:20 | 回复:0
  • CVE-2021-41222
    CVE-2021-41222
    TensorFlow is an open source platform for machine learning. In affected versions the implementation of `SplitV` can trigger a segfault is an attacker supplies negative arguments. This occurs whenever ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:18 | 回复:0
  • CVE-2021-41225
    CVE-2021-41225
    TensorFlow is an open source platform for machine learning. In affected versions TensorFlow's Grappler optimizer has a use of unitialized variable. If the `train_nodes` vector (obtained from the s ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:15 | 回复:0
  • CVE-2021-41227
    CVE-2021-41227
    TensorFlow is an open source platform for machine learning. In affected versions the `ImmutableConst` operation in TensorFlow can be tricked into reading arbitrary memory contents. This is because the ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:9 | 回复:0
  • CVE-2021-41228
    CVE-2021-41228
    TensorFlow is an open source platform for machine learning. In affected versions TensorFlow's `saved_model_cli` tool is vulnerable to a code injection as it calls `eval` on user supplied strings. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:12 | 回复:0
  • CVE-2021-41230
    CVE-2021-41230
    Pomerium is an open source identity-aware access proxy. In affected versions changes to the OIDC claims of a user after initial login are not reflected in policy evaluation when using `allowed_idp_cla ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:30 | 回复:0
  • CVE-2021-41250
    CVE-2021-41250
    Python discord bot is the community bot for the Python Discord community. In affected versions when a non-blacklisted URL and an otherwise triggering filter token is included in the same message the t ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:24 | 回复:0
  • CVE-2021-41251
    CVE-2021-41251
    @sap-cloud-sdk/core contains the core functionality of the SAP Cloud SDK as well as the SAP Business Technology Platform abstractions. This affects applications on SAP Business Technology Platform tha ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:18 | 回复:0
  • CVE-2020-23129
    CVE-2020-23129
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:14 | 回复:0
  • CVE-2020-23130
    CVE-2020-23130
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:19 | 回复:0
  • CVE-2021-37471
    CVE-2021-37471
    Cradlepoint IBR900-600 devices running versions 7.21.10 are vulnerable to a restricted shell escape sequence that provides an attacker the capability to simultaneously deny availability to the device ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:16 | 回复:0
  • CVE-2021-25978
    CVE-2021-25978
    Apostrophe CMS versions between 2.63.0 to 3.3.1 are vulnerable to Stored XSS where an editor uploads an SVG file that contains malicious JavaScript onto the Images module, which triggers XSS once view ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:17 | 回复:0
  • CVE-2021-43411
    CVE-2021-43411
    An issue was discovered in GNU Hurd before 0.9 20210404-9. When trying to exec a setuid executable, there's a window of time when the process already has the new privileges, but still refers to th ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:26 | 回复:0
  • CVE-2021-43412
    CVE-2021-43412
    An issue was discovered in GNU Hurd before 0.9 20210404-9. libports accepts fake notification messages from any client on any port, which can lead to port use-after-free. This can be exploited for loc ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:23 | 回复:0
  • CVE-2021-43413
    CVE-2021-43413
    An issue was discovered in GNU Hurd before 0.9 20210404-9. A single pager port is shared among everyone who mmaps a file, allowing anyone to modify any files that they can read. This can be trivially ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:16 | 回复:0
  • CVE-2021-43414
    CVE-2021-43414
    An issue was discovered in GNU Hurd before 0.9 20210404-9. The use of an authentication protocol in the proc server is vulnerable to man-in-the-middle attacks, which can be exploited for local privile ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:31 | 阅读:26 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap