TensorFlow has Null Pointer Error in QuantizedMatMulWithBiasAndDequantize
CVE-2023-25670
7.5HIGH
What is CVE-2023-25670?
An issue in TensorFlow, an open-source machine learning platform, has been identified where a null pointer deference occurs in the QuantizedMatMulWithBiasAndDequantize function when the Math Kernel Library (MKL) is enabled. This vulnerability affects versions of TensorFlow prior to 2.12.0 and 2.11.1. Users are encouraged to upgrade to the fixed versions to mitigate the risk associated with this error.
Affected Version(s)
tensorflow < 2.11.1