This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[CVE ID] | |
CVE-2024-36730 | |
[Affected Component] | |
OneFlow API: oneflow.new_ones | |
[VERSION] | |
v0.9.1 | |
[VulnerabilityType Other] | |
CWE-20: Improper Input Validation | |
[DESCRIPTION] | |
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) via inputting negative values into the oneflow.zeros/ones parameter. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[CVE ID] | |
CVE-2024-36732 | |
[PRODUCT] | |
Oneflow v0.9.1 | |
[VERSION] | |
Oneflow v0.9.1 | |
[PROBLEM TYPE] | |
CWE-20: Improper Input Validation | |
[DESCRIPTION] | |
An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when an empty array is processed with oneflow.tensordot. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[CVE ID] | |
CVE-2024-36734 | |
[Affected Component] | |
OneFlow v0.9.1 | |
[VERSION] | |
OneFlow v0.9.1 | |
[VulnerabilityType Other] | |
CWE-20: Improper Input Validation | |
[DESCRIPTION] | |
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) via inputting a negative value into the dim parameter. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[CVE ID] | |
CVE-2024-36735 | |
[Affected Component] | |
OneFlow v0.9.1 | |
[VERSION] | |
OneFlow v0.9.1 | |
[VulnerabilityType Other] | |
CWE-20: Improper Input Validation | |
[DESCRIPTION] | |
OneFlow-Inc. Oneflow v0.9.1 does not display an error or warning when the oneflow.eye parameter is floating. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[CVE ID] | |
CVE-2024-36736 | |
[Affected Component] | |
OneFlow v0.9.1 | |
[VERSION] | |
OneFlow v0.9.1 | |
[VulnerabilityType Other] | |
CWE-20: Improper Input Validation | |
[DESCRIPTION] | |
An issue in the oneflow.permute component of OneFlow-Inc. Oneflow v0.9.1 causes an incorrect calculation when the same dimension operation is performed. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[CVE ID] | |
CVE-2024-36737 | |
[Affected Component] | |
OneFlow v0.9.1 | |
[VERSION] | |
OneFlow v0.9.1 | |
[VulnerabilityType Other] | |
CWE-20: Improper Input Validation | |
[DESCRIPTION] | |
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) via inputting a negative value into the oneflow.full parameter. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[CVE ID] | |
CVE-2024-36740 | |
[Affected Component] | |
OneFlow v0.9.1 | |
[VERSION] | |
OneFlow v0.9.1 | |
[VulnerabilityType Other] | |
CWE-20: Improper Input Validation | |
[DESCRIPTION] | |
An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when index as a negative number exceeds the range of size. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[CVE ID] | |
CVE-2024-36742 | |
[Affected Component] | |
OneFlow v0.9.1 | |
[VERSION] | |
OneFlow v0.9.1 | |
[VulnerabilityType Other] | |
CWE-20: Improper Input Validation | |
[DESCRIPTION] | |
An issue in the oneflow.scatter_nd parameter OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when index parameter exceeds the range of shape. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[CVE ID] | |
CVE-2024-36743 | |
[Affected Component] | |
OneFlow v0.9.1 | |
[VERSION] | |
OneFlow v0.9.1 | |
[VulnerabilityType Other] | |
CWE-20: Improper Input Validation | |
[DESCRIPTION] | |
An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when an empty array is processed with oneflow.dot. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[CVE ID] | |
CVE-2024-36745 | |
[Affected Component] | |
OneFlow v0.9.1 | |
[VERSION] | |
OneFlow v0.9.1 | |
[VulnerabilityType Other] | |
CWE-20: Improper Input Validation | |
[DESCRIPTION] | |
An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) via inputting a negative value into the oneflow.index_select parameter. |