CVE-2023-27579 – This CVE describes a floating-point exception (... (How to Fix)

Q: How do I fix CVE-2023-27579?

1. Update TensorFlow to version 2.12 or 2.11.1 using pip: 'pip install --upgrade tensorflow==2.12.0' or 'pip install --upgrade tensorflow==2.11.1'. 2. Restart all services using TensorFlow. 3. Rebuild any containers or deployments with the updated version.

Q: What is the severity of CVE-2023-27579?

CVE-2023-27579 has a CVSS score of 7.5 (HIGH). This CVE describes a floating-point exception (FPE) vulnerability in TensorFlow's TFLite component when constructing models with a filter_input_channel parameter less than 1. This can cause denial of service through application crashes. Users running vulnerable TensorFlow versions for machine learning inference are affected.

📋 TL;DR

This CVE describes a floating-point exception (FPE) vulnerability in TensorFlow's TFLite component when constructing models with a filter_input_channel parameter less than 1. This can cause denial of service through application crashes. Users running vulnerable TensorFlow versions for machine learning inference are affected.

💻 Affected Systems

Products:

TensorFlow

Versions: TensorFlow versions before 2.12 and 2.11.1

Operating Systems: All operating systems running TensorFlow

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects TFLite model construction with specific parameter values. TensorFlow Serving and other inference deployments using TFLite are vulnerable.

📦 What is this software?

Tensorflow by Google

View all CVEs affecting Tensorflow →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Application crash leading to denial of service, potentially disrupting machine learning inference pipelines and dependent services.

🟠

Likely Case

Application instability or crashes when processing malicious or malformed TFLite models, causing service interruptions.

🟢

If Mitigated

Minimal impact with proper input validation and model vetting procedures in place.

🌐 Internet-Facing: MEDIUM - Exploitation requires submitting malicious TFLite models to vulnerable endpoints, but many ML inference services accept external model inputs.

🏢 Internal Only: LOW - Requires internal users to construct or submit malicious TFLite models, which is less likely in controlled environments.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW - Requires constructing a TFLite model with filter_input_channel < 1, which is straightforward.

No public exploit code identified, but the vulnerability is simple to trigger with basic TFLite model manipulation.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: TensorFlow 2.12 or 2.11.1

Vendor Advisory: https://github.com/tensorflow/tensorflow/security/advisories/GHSA-5w96-866f-6rm8

Restart Required: Yes

Instructions:

1. Update TensorFlow to version 2.12 or 2.11.1 using pip: 'pip install --upgrade tensorflow==2.12.0' or 'pip install --upgrade tensorflow==2.11.1'. 2. Restart all services using TensorFlow. 3. Rebuild any containers or deployments with the updated version.

🔧 Temporary Workarounds

Input validation for TFLite models

all

Implement validation to reject TFLite models with filter_input_channel parameter values less than 1 before processing.

Model vetting process

all

Establish a review process for all TFLite models before deployment to production environments.

🧯 If You Can't Patch

Implement strict input validation to reject TFLite models with suspicious parameter values.
Isolate TensorFlow inference services in restricted network segments to limit blast radius.

🔍 How to Verify

Check if Vulnerable:

Check TensorFlow version: 'python -c "import tensorflow as tf; print(tf.__version__)"'. If version is below 2.12 and not 2.11.1, you are vulnerable.

Check Version:

python -c "import tensorflow as tf; print(tf.__version__)"

Verify Fix Applied:

After updating, verify version is 2.12 or 2.11.1 using the same command. Test with sample TFLite models containing filter_input_channel < 1 to ensure no crashes occur.

📡 Detection & Monitoring

Log Indicators:

Application crashes with floating-point exception errors
TensorFlow/TFLite process termination logs
Error messages containing 'filter_input_channel' or FPE references

Network Indicators:

Unusual volume of TFLite model uploads to inference endpoints
Requests with malformed model parameters

SIEM Query:

source="tensorflow.log" AND ("FPE" OR "floating point" OR "crash" OR "filter_input_channel")

📊 Metadata

CVE ID: CVE-2023-27579

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-697

Published: March 25, 2023

Last Updated: November 21, 2024

🔗 References

https://github.com/tensorflow/tensorflow/commit/34f8368c535253f5c9cb3a303297743b62442aaa Patch
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-5w96-866f-6rm8 Patch,Vendor Advisory
https://github.com/tensorflow/tensorflow/commit/34f8368c535253f5c9cb3a303297743b62442aaa Patch
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-5w96-866f-6rm8 Patch,Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-27579, you might also want to check these: