CVE-2021-37673 MEDIUM

CVE-2021-37673: `CHECK`-fail in `MapStage` in TensorFlow

Vendor Tensorflow

Product tensorflow

Weakness CWE-20 · Input validation

Published August 12, 2021

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

5.5/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality None

Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a denial of service via a `CHECK`-fail in `tf.raw_ops.MapStage`. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/map_stage_op.cc#L513) does not check that the `key` input is a valid non-empty tensor. We have patched the issue in GitHub commit d7de67733925de196ec8863a33445b73f9562d1d. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.

Key dates

02Disclosure timeline

August 12, 2021 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-37673

Related vulnerabilities

Identifiers

CVE CVE-2021-37673

CWE CWE-20

CVSS 5.5 / MEDIUM

Affected versions

Vendor Tensorflow

Product tensorflow

Affected >= 2.5.0, < 2.5.1

Vendor Tensorflow

Product tensorflow

Affected >= 2.4.0, < 2.4.3

Vendor Tensorflow

Product tensorflow

Affected < 2.3.4

CVE-2021-37673: `CHECK`-fail in `MapStage` in TensorFlow

01Description

02Disclosure timeline

03References

04Related CVE