Low severity3.3NVD Advisory· Published May 5, 2025· Updated Apr 15, 2026

CVE-2025-4287

Description

A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function torch.cuda.nccl.reduce of the file torch/cuda/nccl.py. The manipulation leads to denial of service. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The patch is identified as 5827d2061dcb4acd05ac5f8e65d8693a481ba0f5. It is recommended to apply a patch to fix this issue.

Patches

5827d2061dcb

https://github.com/divigroup-rap/pytorchvia osv

080473b8df77

https://github.com/pytorch/pytorchvia osv

PR #150923

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

github.com/Divigroup-RAP/PYTORCH/commit/5827d2061dcb4acd05ac5f8e65d8693a481ba0f5nvd
github.com/pytorch/pytorch/issues/150836nvd
github.com/pytorch/pytorch/issues/150836nvd
github.com/pytorch/pytorch/pull/150923nvd
vuldb.comnvd
vuldb.comnvd
vuldb.comnvd

News mentions

No linked articles in our index yet.

cvss	0.214
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000