CVE-2021-33648

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-33648

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-33648.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-33648

Published

2022-06-27T17:15:08.670Z

Modified

2026-03-14T11:00:06.825294Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

When performing the inference shape operation of Affine, Concat, MatMul, ArgMinMax, EmbeddingLookup, and Gather operators, if the input shape size is 0, it will access data outside of bounds of shape which allocated from heap buffers.

References

https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-007_en.md

Affected packages

Git / github.com/mindspore-ai/mindspore

Affected ranges

Type

GIT

Repo

https://github.com/mindspore-ai/mindspore

Events

Introduced

b2874463c2b865dc97e920ee12c722a3db0235b7

Fixed

cfbb0d0dfad1fa4e6f6b8310f6e2cf79db639213

Database specific

{
    "versions": [
        {
            "introduced": "1.1.0"
        },
        {
            "fixed": "1.3.0"
        }
    ]
}

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-33648.json"