AVG-2114 log
| Package | tensorflow |
| Status | Vulnerable |
| Severity | Medium |
| Type | arbitrary file overwrite |
| Affected | 2.7.0-4 |
| Fixed | Unknown |
| Current | 2.20.0-3 [extra] |
| Ticket | Create |
| Created | Wed Jun 30 08:28:41 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-35958 | Medium | Yes | Arbitrary file overwrite | ** DISPUTED ** TensorFlow through 2.5.0 allows attackers to overwrite arbitrary files via a crafted archive when tf.keras.utils.get_file is used with... |