← back
CVE-2021-33649

CVE-2021-33649

EPSS 0.9%CWE-125
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.9%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
27 Jun 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
When performing the inference shape operation of the Transpose operator, if the value in the perm element is greater than or equal to the size of the input_shape, it will access data outside of bounds of input_shape which allocated from heap buffers.