Unrated severityNVD Advisory· Published Mar 10, 2025· Updated Mar 10, 2025

PyTorch Quantized Sigmoid Module nnq_Sigmoid initialization

CVE-2025-2149

Description

A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function nnq_Sigmoid of the component Quantized Sigmoid Module. The manipulation of the argument scale/zero_point leads to improper initialization. The attack needs to be approached locally. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used.

Affected products

Chatwoot/Pytorchv5
Range: 2.6.0+cu124

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/pytorch/pytorch/issues/147818mitreexploitissue-tracking
vuldb.commitrethird-party-advisory
github.com/pytorch/pytorch/issues/147818mitreissue-tracking
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000