CVE-2020-15194

CVSS v4.0

6.9

Medium

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Tensorflow versions prior to 1.15.4 Tensorflow versions prior to 2.0.3 Tensorflow versions prior to 2.1.2 Tensorflow versions prior to 2.2.1 Tensorflow versions prior to 2.3.1

Description The SparseFillEmptyRowsGrad implementation has incomplete validation of the shapes of its arguments. Although reverse index map t and grad values t are accessed in a similar pattern, only reverse index map t is validated to be of proper shape. This allows malicious users to pass a bad grad values t to trigger an assertion failure in vec, causing denial of service in serving installations.

Recommendations To resolve the issue, upgrade to TensorFlow 1.15.4 or later. To resolve the issue, upgrade to TensorFlow 2.0.3 or later. To resolve the issue, upgrade to TensorFlow 2.1.2 or later. To resolve the issue, upgrade to TensorFlow 2.2.1 or later. To resolve the issue, upgrade to TensorFlow 2.3.1 or later.

Exploit

Fix

DoS

Assertion Failure

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-617CWE-20

Related Identifiers

BIT-TENSORFLOW-2020-15194

CVE-2020-15194

GHSA-9MQP-7V2H-2382

OPENSUSE-SU-2020:1766-1

OPENSUSE-SU-2020_1766-1

OPENSUSE-SU-2024:12116-1

PYSEC-2020-117

PYSEC-2020-274

PYSEC-2020-309

Affected Products

Suse

Tensorflow

CVE-2020-15194

Weakness Enumeration

Related Identifiers

Affected Products

References · 37