QwikSec

Security Database

CVE

CWE

Training

CVE-2020-15195

Published: Sep 25, 2020

Modified: Aug 4, 2024

PUBLISHED

CVSS v3.1

8.5

HIGH

Description

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the implementation of `SparseFillEmptyRowsGrad` uses a double indexing pattern. It is possible for `reverse_index_map(i)` to be an index outside of bounds of `grad_values`, thus resulting in a heap buffer overflow. The issue is patched in commit 390611e0d45c5793c7066110af37c8514e6a6c54, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.

Vendor	Product	Versions
tensorflow	tensorflow	affected `< 1.15.4` affected `>= 2.0.0, < 2.0.3` affected `>= 2.1.0, < 2.1.2` affected `>= 2.2.0, < 2.2.1` affected `>= 2.3.0, < 2.3.1`

Weaknesses (CWE)

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

References

https://github.com/tensorflow/tensorflow/releases/tag/v2.3.1

x_refsource_MISC

https://github.com/tensorflow/tensorflow/security/advisories/GHSA-63xm-rx5p-xvqr

x_refsource_CONFIRM

https://github.com/tensorflow/tensorflow/commit/390611e0d45c5793c7066110af37c8514e6a6c54

x_refsource_MISC

openSUSE-SU-2020:1766

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.