Haoliang Zhang

1 exploit Active since Mar 2023
CVE-2023-27579 WRITEUP HIGH WRITEUP
TensorFlow < 2.12.0 - Denial of Service via Filter Input Channel Parameter
TensorFlow is an end-to-end open source platform for machine learning. Constructing a tflite model with a paramater `filter_input_channel` of less than 1 gives a FPE. This issue has been patched in version 2.12. TensorFlow will also cherrypick the fix commit on TensorFlow 2.11.1.
CVSS 7.5