diff --git a/requirements/docker.txt b/requirements/docker.txt
index 73cf47a66..add700a36 100644
--- a/requirements/docker.txt
+++ b/requirements/docker.txt
@@ -1,3 +1,7 @@
 # Force patch for CVE-2022-1941
-# Otherwise, TF <2.12 will force a vulnerable version of `protobuf`
+# Otherwise, onnxruntime or TF <2.12 will force a vulnerable version of `protobuf`
 protobuf==3.20.3
+
+# Force patch for CVE-2023-25668 (and a few others)
+# Otherwise, onnxruntime will drop TF to 2.9 (because of clash in protobuf)
+tensorflow>=2.12.0
diff --git a/runtimes/alibi-detect/requirements/dev.txt b/runtimes/alibi-detect/requirements/dev.txt
index 504e9ba51..17240165e 100644
--- a/runtimes/alibi-detect/requirements/dev.txt
+++ b/runtimes/alibi-detect/requirements/dev.txt
@@ -1,3 +1,2 @@
-# Force tests to use TF 2.10 - otherwise, it may fallback to TF 2.9 (due to the
-# incompatibility with `protobuf>=3.20.2`)
-tensorflow==2.10.1
+# Force tests to use TF >=2.12 (this will match the Docker image environment)
+tensorflow>=2.12.0