CVE-2021-37674 MEDIUM

CVE-2021-37674: Incomplete validation in `MaxPoolGrad` in TensorFlow

Vendor Tensorflow

Product tensorflow

Weakness CWE-20 · Input validation

Published August 12, 2021

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

5.5/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality None

Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a denial of service via a segmentation fault in `tf.raw_ops.MaxPoolGrad` caused by missing validation. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/maxpooling_op.cc) misses some validation for the `orig_input` and `orig_output` tensors. The fixes for CVE-2021-29579 were incomplete. We have patched the issue in GitHub commit 136b51f10903e044308cf77117c0ed9871350475. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.

Key dates

02Disclosure timeline

August 12, 2021 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-37674 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html

Related vulnerabilities

Identifiers

CVE CVE-2021-37674

CWE CWE-20

CVSS 5.5 / MEDIUM

Affected versions

Vendor Tensorflow

Product tensorflow

Affected >= 2.5.0, < 2.5.1

Vendor Tensorflow

Product tensorflow

Affected >= 2.4.0, < 2.4.3

Vendor Tensorflow

Product tensorflow

Affected < 2.3.4

CVE-2021-37674: Incomplete validation in `MaxPoolGrad` in TensorFlow

01Description

02Disclosure timeline

03References

04Related CVE