Login Sign Up

CVE-2021-41201

7.8 HIGH

📋 TL;DR

This CVE describes an uninitialized variable access vulnerability in TensorFlow's EinsumHelper::ParseEquation() function. The bug occurs when the function fails to properly set boolean flags to false, potentially leading to memory corruption or crashes. This affects TensorFlow users running affected versions who process einsum operations with ellipsis notation.

💻 Affected Systems

Products:
  • TensorFlow
Versions: TensorFlow 2.4.0 to 2.4.3, 2.5.0 to 2.5.1, 2.6.0, and potentially earlier versions
Operating Systems: All operating systems running TensorFlow
Default Config Vulnerable: ⚠️ Yes
Notes: Vulnerability is triggered when using einsum operations with ellipsis notation. The bug is in core TensorFlow code, not dependent on specific configurations.

📦 What is this software?

Tensorflow by Google

View all CVEs affecting Tensorflow →

Tensorflow by Google

View all CVEs affecting Tensorflow →

Tensorflow by Google

View all CVEs affecting Tensorflow →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Memory corruption leading to arbitrary code execution, denial of service, or information disclosure depending on how uninitialized memory is accessed.

🟠

Likely Case

Application crashes or instability when processing specific einsum operations with ellipsis notation.

🟢

If Mitigated

No impact if the vulnerable code path is not triggered or proper input validation prevents exploitation.

🌐 Internet-Facing: MEDIUM - TensorFlow is often used in backend ML services that could be exposed via APIs, but exploitation requires specific einsum operations.
🏢 Internal Only: MEDIUM - Internal ML pipelines using einsum operations with ellipsis could experience crashes or instability.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires triggering the vulnerable code path with specific einsum operations. No public exploits are known at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: TensorFlow 2.7.0, 2.6.1, 2.5.2, 2.4.4

Vendor Advisory: https://github.com/tensorflow/tensorflow/security/advisories/GHSA-j86v-p27c-73fm

Restart Required: Yes

Instructions:

1. Identify your TensorFlow version. 2. Upgrade to patched version: pip install tensorflow==2.7.0 (or appropriate version). 3. Restart any services using TensorFlow. 4. Test einsum operations to ensure stability.

🔧 Temporary Workarounds

Avoid einsum with ellipsis

all

Avoid using einsum operations with ellipsis notation (three dots '...') in affected TensorFlow versions.

🧯 If You Can't Patch

  • Implement input validation to reject or sanitize einsum operations containing ellipsis notation.
  • Isolate TensorFlow services in containers with limited privileges to reduce potential impact.

🔍 How to Verify

Check if Vulnerable:

Check TensorFlow version: python -c 'import tensorflow as tf; print(tf.__version__)' and compare to affected versions.

Check Version:

python -c 'import tensorflow as tf; print(tf.__version__)'

Verify Fix Applied:

After patching, test einsum operations with ellipsis notation to ensure no crashes occur.

📡 Detection & Monitoring

Log Indicators:

  • Application crashes or segmentation faults when processing einsum operations
  • Error messages related to memory access violations in TensorFlow logs

Network Indicators:

  • Increased error rates in ML inference APIs using einsum operations

SIEM Query:

source="tensorflow" AND ("segmentation fault" OR "memory access" OR "einsum" OR "ellipsis")

📊 Metadata

CVE ID: CVE-2021-41201
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-824
Published: November 5, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-41201, you might also want to check these:

CVE-2020-11138 9.8

This vulnerability allows attackers to exploit uninitialized pointers during music playback in Qualc...

Same vulnerability type (CWE-824)
CVE-2022-44451 9.8

This vulnerability allows arbitrary code execution through a use of uninitialized pointer in Open Ba...

Same vulnerability type (CWE-824)
CVE-2025-66588 9.8

An uninitialized pointer vulnerability in AzeoTech DAQFactory allows attackers to execute arbitrary ...

Same vulnerability type (CWE-824)