David G. Andersen

1 exploit Active since May 2020
CVE-2018-21233 WRITEUP MEDIUM WRITEUP
TensorFlow < 1.7.0 - Out-of-bounds Read in BMP Decoder
TensorFlow before 1.7.0 has an integer overflow that causes an out-of-bounds read, possibly causing disclosure of the contents of process memory. This occurs in the DecodeBmp feature of the BMP decoder in core/kernels/decode_bmp_op.cc.
CVSS 6.5