Hugging Face's logo

WolfpackArmy
/
tflite-dos-poc

LiteRT
Model card Files
xet
 Community
tflite-dos-poc / README.md
WolfpackArmy's picture
WolfpackArmy
Upload folder using huggingface_hub
1377cda verified
preview code
|
raw
history blame contribute delete
512 Bytes

TFLite Model File Vulnerability PoC

Vulnerability

OOM via Huge Tensor Metadata and Circular Reference DoS in TFLite (.tflite) files

Files

  • poc_oom_tensor.tflite — 256 bytes, flatbuffer claiming 4GB buffer allocation
  • poc_circular_refs.tflite — 4KB, cross-referencing flatbuffer offsets causing parsing loops
  • benign.tflite — Clean TFLite file for comparison

Reproduce 

import tensorflow as tf
interpreter = tf.lite.Interpreter(model_path='poc_oom_tensor.tflite')  # OOM