Security Vulnerabilities - CVEs Published In August 2021
TensorFlow is an end-to-end open source platform for machine learning. When a user does not supply arguments that determine a valid sparse tensor, `tf.raw_ops.SparseTensorSliceDataset` implementation can be made to dereference a null pointer. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/data/sparse_tensor_slice_dataset_op.cc#L240-L251) has some argument validation but fails to consider the case when either `indices` or `values` are provided for an empty sparse tensor when the other is not. If `indices` is empty, then [code that performs validation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/data/sparse_tensor_slice_dataset_op.cc#L260-L261) (i.e., checking that the indices are monotonically increasing) results in a null pointer dereference. If `indices` as provided by the user is empty, then `indices` in the C++ code above is backed by an empty `std::vector`, hence calling `indices->dim_size(0)` results in null pointer dereferencing (same as calling `std::vector::at()` on an empty vector). We have patched the issue in GitHub commit 02cc160e29d20631de3859c6653184e3f876b9d7. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.
CVSS Score
7.7
EPSS Score
0.0
Published
2021-08-12
Cross Site Request Forgery (CSRF) vulnerability exists in DamiCMS v6.0.6 that can add an admin account via admin.php?s=/Admin/doadd.
CVSS Score
8.0
EPSS Score
0.001
Published
2021-08-12
Cross Site Request Forgery (CSRF) vulnerability exists in 711cms v1.0.7 that can add an admin account via admin.php?c=Admin&m=content.
CVSS Score
8.8
EPSS Score
0.001
Published
2021-08-12
File Upload vulnerabilty in AikCms v2.0.0 in poster_edit.php because the background file management office does not verify the uploaded file.
CVSS Score
7.2
EPSS Score
0.004
Published
2021-08-12
Cross Site Request Forgery (CSRF) vulnerability exists in v2.0.0 in video_list.php, which can let a malicious user delete a video message.
CVSS Score
2.4
EPSS Score
0.001
Published
2021-08-12
Cross Site Request Forgery (CSRF) vulnerability in AikCms 2.0.0 in video_list.php, which can let a malicious user delete movie information.
CVSS Score
3.5
EPSS Score
0.001
Published
2021-08-12
CVE-2021-36942
Windows LSA Spoofing Vulnerability
Known exploited
CVSS Score
7.5
EPSS Score
0.888
Published
2021-08-12
Azure CycleCloud Elevation of Privilege Vulnerability
CVSS Score
4.0
EPSS Score
0.002
Published
2021-08-12
Windows 10 Update Assistant Elevation of Privilege Vulnerability
CVSS Score
7.3
EPSS Score
0.014
Published
2021-08-12
Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
CVSS Score
5.4
EPSS Score
0.008
Published
2021-08-12