AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2018-7575: Google TensorFlow 1.7.x and earlier is affected by a Buffer Overflow vulnerability. The type of exploitation is context-

mediumvulnerability

security

Source: NVD/CVE DatabaseApril 24, 2019CVE-2018-7575

Summary

Google TensorFlow version 1.7.x and earlier contains a buffer overflow vulnerability (a bug where a program writes data outside its intended memory boundaries), which can be exploited in ways that depend on the specific context in which TensorFlow is used. The vulnerability is related to integer overflow or wraparound issues (errors in how very large numbers are handled in calculations).

Vulnerability Details

CVSS Score

7.5

EPSS (30-day exploit probability)

EPSS: 0.2%

Classification

Attack SophisticationModerate

Impact (CIA+S)

integrityavailability

AI Component TargetedFramework

Taxonomy References

CWE (Weakness Type)

CWE-190

Affected Vendors

Original source: https://nvd.nist.gov/vuln/detail/CVE-2018-7575

First tracked: February 15, 2026 at 08:38 PM

Classified by LLM (prompt v3) · confidence: 92%