TensorFlow vulnerable to Out-of-Bounds Read in GRUBlockCellGrad
CVE-2023-25658
7.5HIGH
What is CVE-2023-25658?
An out of bounds read has been identified in TensorFlow’s GRUBlockCellGrad component, affecting versions prior to 2.12.0 and 2.11.1. This vulnerability may potentially allow attackers to read memory beyond the allocated limits, which can lead to information disclosure and could compromise the integrity of the application. Users are advised to upgrade to the fixed versions, TensorFlow 2.12.0 or 2.11.1, to mitigate risks associated with this vulnerability.
Affected Version(s)
tensorflow < 2.11.1