QwikSec

Security Database

CVE

CWE

Training

CVE-2022-23574

Published: Feb 4, 2022

Modified: Apr 22, 2025

PUBLISHED

CVSS v3.1

8.8

HIGH

Description

Tensorflow is an Open Source Machine Learning Framework. There is a typo in TensorFlow's `SpecializeType` which results in heap OOB read/write. Due to a typo, `arg` is initialized to the `i`th mutable argument in a loop where the loop index is `j`. Hence it is possible to assign to `arg` from outside the vector of arguments. Since this is a mutable proto value, it allows both read and write to outside of bounds data. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, and TensorFlow 2.6.3, as these are also affected and still in supported range.

Vendor	Product	Versions
tensorflow	tensorflow	affected `>= 2.7.0, < 2.7.1` affected `>= 2.6.0, < 2.6.3` affected `< 2.5.3`

Weaknesses (CWE)

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

https://github.com/tensorflow/tensorflow/security/advisories/GHSA-77gp-3h4r-6428

x_refsource_CONFIRM

https://github.com/tensorflow/tensorflow/commit/0657c83d08845cc434175934c642299de2c0f042

x_refsource_MISC

https://github.com/tensorflow/tensorflow/blob/a1320ec1eac186da1d03f033109191f715b2b130/tensorflow/core/framework/full_type_util.cc#L81-L102

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.