CVE-2020-15205

Name: CVE-2020-15205
Creator: NVD / NIST
Published: 2020-09-25T19:15:15.823+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

CRITICALCVSS 9.8/10EPSS 1.01%

Last modified Jun 17, 2026

CVE-2020-15205 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `data_splits` argument of `tf.raw_ops.StringNGrams` lacks validation. This allows a user to pass values that can cause heap overflow errors and even leak contents of memory In the linked code snippet, all the binary strings after `ee ff` are contents from the memory stack. EPSS estimates a 1.01% chance of exploitation in the next 30 days.

Description

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `data_splits` argument of `tf.raw_ops.StringNGrams` lacks validation. This allows a user to pass values that can cause heap overflow errors and even leak contents of memory In the linked code snippet, all the binary strings after `ee ff` are contents from the memory stack. Since these can contain return addresses, this data leak can be used to defeat ASLR. The issue is patched in commit 0462de5b544ed4731aa2fb23946ac22c01856b80, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.

Metrics

CVSS 3.1

9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

1.01%

58.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Google	Tensorflow	< 1.15.4
Google	Tensorflow	>= 2.0.0, < 2.0.3
Google	Tensorflow	>= 2.1.0, < 2.1.2
Google	Tensorflow	>= 2.2.0, < 2.2.1
Google	Tensorflow	>= 2.3.0, < 2.3.1
Opensuse	Leap	15.2

References

http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00065.htmlMailing List, Third Party Advisory
https://github.com/tensorflow/tensorflow/commit/0462de5b544ed4731aa2fb23946ac22c01856b80Patch, Third Party Advisory
https://github.com/tensorflow/tensorflow/releases/tag/v2.3.1Third Party Advisory
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-g7p5-5759-qv46Exploit, Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00065.htmlMailing List, Third Party Advisory
https://github.com/tensorflow/tensorflow/commit/0462de5b544ed4731aa2fb23946ac22c01856b80Patch, Third Party Advisory
https://github.com/tensorflow/tensorflow/releases/tag/v2.3.1Third Party Advisory
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-g7p5-5759-qv46Exploit, Third Party Advisory

Timeline

Published: Sep 25, 2020
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2020-15205?

How severe is CVE-2020-15205?

CVE-2020-15205 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 1.01% probability of exploitation in the next 30 days.

How do I fix CVE-2020-15205?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2020-15205?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST