CNNVD-202509-3945 Information

CNNVD ID

CNNVD-202509-3945

Related CVE

CVE-2025-55559

• CNNVD Published: 2025-09-25

Description (Chinese)

TensorFlow是TensorFlow开源的一套用于机器学习的端到端开源平台。 TensorFlow v2.18.0版本存在安全漏洞，该漏洞源于tf.keras.layers.Conv2D中padding设置为valid时，可能导致拒绝服务攻击。

Description (English)

TensorFlow is the TensorFlow open source set of end-to-end open source platforms for machine learning. There is a security loophole in TensorFlow v2.18.0, which originates from the tf.keras.layers.Conv2D when paddy is set to valid, which could lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

TensorFlow

Published

2025-09-25

Last Modified

2026-02-24

References

https://gist.github.com/shaoyuyoung/0e7d2a586297ae9c8ed14d8706749efc https://github.com/tensorflow/tensorflow/issues/84205

Patch

https://github.com/tensorflow/tensorflow/releases