Jian Cai

3 exploits Active since Mar 2023
CVE-2023-25673 WRITEUP HIGH WRITEUP
TensorFlow <2.12.0, 2.11.1 - Info Disclosure
TensorFlow is an open source platform for machine learning. Versions prior to 2.12.0 and 2.11.1 have a Floating Point Exception in TensorListSplit with XLA. A fix is included in TensorFlow version 2.12.0 and version 2.11.1.
CVSS 7.5
CVE-2023-25674 WRITEUP HIGH WRITEUP
TensorFlow < 2.12.0 - Null Pointer Dereference in RandomShuffle with XLA Enabled
TensorFlow is an open source machine learning platform. Versions prior to 2.12.0 and 2.11.1 have a null pointer error in RandomShuffle with XLA enabled. A fix is included in TensorFlow 2.12.0 and 2.11.1.
CVSS 7.5
CVE-2023-25675 WRITEUP HIGH WRITEUP
TensorFlow <2.12.0, 2.11.1 - Use After Free
TensorFlow is an open source machine learning platform. When running versions prior to 2.12.0 and 2.11.1 with XLA, `tf.raw_ops.Bincount` segfaults when given a parameter `weights` that is neither the same shape as parameter `arr` nor a length-0 tensor. A fix is included in TensorFlow 2.12.0 and 2.11.1.
CVSS 7.5