NULL Pointer Dereference
CVE-2023-25665
Summary
TensorFlow is an open-source platform for machine learning. Prior to versions 2.11.1, when "SparseSparseMaximum" is given an invalid sparse tensor as inputs, it can give a null pointer error.
- LOW
- NETWORK
- NONE
- UNCHANGED
- NONE
- NONE
- NONE
- HIGH
CWE-476 - NULL Pointer Dereference
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
References
Advisory Timeline
- Published