CVE-2020-15200

low-risk

Published 2020-09-25

In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the values in the `splits` tensor generate a valid partitioning of the `values` tensor. Thus, the code sets up conditions to cause a heap buffer overflow. A `BatchedMap` is equivalent to a vector where each element is a hashmap. However, if the first element of `splits_values` is not 0, `batch_idx` will never be 1, hence there will be no hashmap at index 0 in `per_batch_counts`. Trying to access that in the user code results in a segmentation fault. The issue is patched in commit 3cbb917b4714766030b28eba9fb41bb97ce9ee02 and is released in TensorFlow version 2.3.1.

Do I need to act?

0.28% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.9/10 Medium

NETWORK / HIGH complexity

Affected Products (1)

Tensorflow

Affected Vendors

Google

References (6)

Patch https://github.com/tensorflow/tensorflow/commit/3cbb917b4714766030b28eba9fb41bb9...

Third Party Advisory https://github.com/tensorflow/tensorflow/releases/tag/v2.3.1

Exploit https://github.com/tensorflow/tensorflow/security/advisories/GHSA-x7rp-74x2-mjf3

Patch https://github.com/tensorflow/tensorflow/commit/3cbb917b4714766030b28eba9fb41bb9...

Third Party Advisory https://github.com/tensorflow/tensorflow/releases/tag/v2.3.1

Exploit https://github.com/tensorflow/tensorflow/security/advisories/GHSA-x7rp-74x2-mjf3

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 1/34 · Minimal

Exposure 5/34 · Minimal