Mindspore AI
Products
1- 10 CVEs
Recent CVEs
10| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-33654 | Hig | 0.49 | 7.5 | 0.01 | Jun 27, 2022 | When performing the initialization operation of the Split operator, if a dimension in the input shape is 0, it will cause a division by 0 exception. | ||
| CVE-2021-33653 | Hig | 0.49 | 7.5 | 0.01 | Jun 27, 2022 | When performing the derivation shape operation of the SpaceToBatch operator, if there is a value of 0 in the parameter block_shape element, it will cause a division by 0 exception. | ||
| CVE-2021-33652 | Hig | 0.49 | 7.5 | 0.01 | Jun 27, 2022 | When the Reduce operator run operation is executed, if there is a value of 0 in the parameter axis_sizes element, it will cause a division by 0 exception. | ||
| CVE-2021-33651 | Hig | 0.49 | 7.5 | 0.01 | Jun 27, 2022 | When performing the analytical operation of the DepthwiseConv2D operator, if the attribute depth_multiplier is 0, it will cause a division by 0 exception. | ||
| CVE-2021-33650 | Hig | 0.49 | 7.5 | 0.01 | Jun 27, 2022 | When performing the inference shape operation of the SparseToDense operator, if the number of inputs is less than three, it will access data outside of bounds of inputs which allocated from heap buffers. | ||
| CVE-2021-33649 | Hig | 0.49 | 7.5 | 0.01 | Jun 27, 2022 | When performing the inference shape operation of the Transpose operator, if the value in the perm element is greater than or equal to the size of the input_shape, it will access data outside of bounds of input_shape which allocated from heap buffers. | ||
| CVE-2021-33648 | Hig | 0.49 | 7.5 | 0.01 | Jun 27, 2022 | When performing the inference shape operation of Affine, Concat, MatMul, ArgMinMax, EmbeddingLookup, and Gather operators, if the input shape size is 0, it will access data outside of bounds of shape which allocated from heap buffers. | ||
| CVE-2021-33647 | Hig | 0.49 | 7.5 | 0.01 | Jun 27, 2022 | When performing the inference shape operation of the Tile operator, if the input data type is not int or int32, it will access data outside of bounds of heap allocated buffers. | ||
| CVE-2025-3145 | Low | 0.21 | 3.3 | 0.00 | Apr 3, 2025 | A vulnerability, which was classified as problematic, has been found in MindSpore 2.5.0. Affected by this issue is the function mindspore.numpy.fft.rfft2. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to… | ||
| CVE-2025-3144 | Low | 0.21 | 3.3 | 0.00 | Apr 3, 2025 | A vulnerability classified as problematic was found in MindSpore 2.5.0. Affected by this vulnerability is the function mindspore.numpy.fft.hfftn. The manipulation leads to memory corruption. It is possible to launch the attack on the local host. The exploit has been disclosed to… |
- risk 0.49cvss 7.5epss 0.01
When performing the initialization operation of the Split operator, if a dimension in the input shape is 0, it will cause a division by 0 exception.
- risk 0.49cvss 7.5epss 0.01
When performing the derivation shape operation of the SpaceToBatch operator, if there is a value of 0 in the parameter block_shape element, it will cause a division by 0 exception.
- risk 0.49cvss 7.5epss 0.01
When the Reduce operator run operation is executed, if there is a value of 0 in the parameter axis_sizes element, it will cause a division by 0 exception.
- risk 0.49cvss 7.5epss 0.01
When performing the analytical operation of the DepthwiseConv2D operator, if the attribute depth_multiplier is 0, it will cause a division by 0 exception.
- risk 0.49cvss 7.5epss 0.01
When performing the inference shape operation of the SparseToDense operator, if the number of inputs is less than three, it will access data outside of bounds of inputs which allocated from heap buffers.
- risk 0.49cvss 7.5epss 0.01
When performing the inference shape operation of the Transpose operator, if the value in the perm element is greater than or equal to the size of the input_shape, it will access data outside of bounds of input_shape which allocated from heap buffers.
- risk 0.49cvss 7.5epss 0.01
When performing the inference shape operation of Affine, Concat, MatMul, ArgMinMax, EmbeddingLookup, and Gather operators, if the input shape size is 0, it will access data outside of bounds of shape which allocated from heap buffers.
- risk 0.49cvss 7.5epss 0.01
When performing the inference shape operation of the Tile operator, if the input data type is not int or int32, it will access data outside of bounds of heap allocated buffers.
- risk 0.21cvss 3.3epss 0.00
A vulnerability, which was classified as problematic, has been found in MindSpore 2.5.0. Affected by this issue is the function mindspore.numpy.fft.rfft2. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to…
- risk 0.21cvss 3.3epss 0.00
A vulnerability classified as problematic was found in MindSpore 2.5.0. Affected by this vulnerability is the function mindspore.numpy.fft.hfftn. The manipulation leads to memory corruption. It is possible to launch the attack on the local host. The exploit has been disclosed to…