VYPR

Vendor CVEs

Pytorch

All CVEs

47 total · sorted by risk
  • CVE-2025-54952CriAug 8, 2025
    risk 0.57cvss 9.8epss 0.01

    An integer overflow vulnerability in the loading of ExecuTorch models can cause smaller-than-expected memory regions to be allocated, potentially resulting in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit…

  • CVE-2025-54951CriAug 7, 2025
    risk 0.57cvss 9.8epss 0.01

    A group of related buffer overflow vulnerabilities in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit cea9b23aa8ff78aff92829a466da97461cc7930c.

  • CVE-2025-54950CriAug 7, 2025
    risk 0.57cvss 9.8epss 0.01

    An out-of-bounds access vulnerability in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005.

  • CVE-2025-54949CriAug 7, 2025
    risk 0.57cvss 9.8epss 0.01

    A heap buffer overflow vulnerability in the loading of ExecuTorch models can potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit ede82493dae6d2d43f8c424e7be4721abe5242be

  • CVE-2025-30405CriAug 7, 2025
    risk 0.57cvss 9.8epss 0.01

    An integer overflow vulnerability in the loading of ExecuTorch models can cause objects to be placed outside their allocated memory area, potentially resulting in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit…

  • CVE-2025-30404CriAug 7, 2025
    risk 0.57cvss 9.8epss 0.01

    An integer overflow vulnerability in the loading of ExecuTorch models can cause overlapping allocations, potentially resulting in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit d158236b1dc84539c1b16843bc74054c9dcba006.

  • CVE-2025-30402HigJul 11, 2025
    risk 0.46cvss 8.1epss 0.00

    A heap-buffer-overflow vulnerability in the loading of ExecuTorch methods can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit 93b1a0c15f7eda49b2bc46b5b4c49557b4e9810f

  • CVE-2024-6577MedMar 20, 2025
    risk 0.41cvss 6.3epss 0.00

    In the latest version of pytorch/serve, the script 'upload_results_to_s3.sh' references the S3 bucket 'benchmarkai-metrics-prod' without ensuring its ownership or confirming its accessibility. This could lead to potential security vulnerabilities or unauthorized access to the…

  • CVE-2026-4538MedMar 22, 2026
    risk 0.27cvss 5.3epss 0.00

    A vulnerability was identified in PyTorch 2.10.0. The affected element is an unknown function of the component pt2 Loading Handler. The manipulation leads to deserialization. The attack can only be performed from a local environment. The exploit is publicly available and might…

  • CVE-2025-4287LowMay 5, 2025
    risk 0.14cvss 3.3epss 0.00

    A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function torch.cuda.nccl.reduce of the file torch/cuda/nccl.py. The manipulation leads to denial of service. It is possible to launch the attack on the local host.…

  • CVE-2023-43654Sep 28, 2023
    risk 0.03cvss epss 0.35

    TorchServe is a tool for serving and scaling PyTorch models in production. TorchServe default configuration lacks proper input validation, enabling third parties to invoke remote HTTP download requests and write files to the disk. This issue could be taken advantage of to…

  • CVE-2024-48063Oct 29, 2024
    risk 0.02cvss epss 0.02

    In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by multiple parties because this is intended behavior in PyTorch distributed computing.

  • CVE-2026-24747Jan 27, 2026
    risk 0.00cvss epss 0.01

    PyTorch is a Python package that provides tensor computation. Prior to version 2.10.0, a vulnerability in PyTorch's `weights_only` unpickler allows an attacker to craft a malicious checkpoint file (`.pth`) that, when loaded with `torch.load(..., weights_only=True)`, can corrupt…

  • CVE-2025-63396Nov 12, 2025
    risk 0.00cvss epss 0.00

    An issue was discovered in PyTorch v2.5 and v2.7.1. Omission of profiler.stop() can cause torch.profiler.profile (PythonTracer) to crash or hang during finalization, leading to a Denial of Service (DoS).

  • CVE-2025-46153Sep 25, 2025
    risk 0.00cvss epss 0.00

    PyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallback_random=True.

  • CVE-2025-55557Sep 25, 2025
    risk 0.00cvss epss 0.00

    A Name Error occurs in pytorch v2.7.0 when a PyTorch model consists of torch.cummin and is compiled by Inductor, leading to a Denial of Service (DoS).

  • CVE-2025-55560Sep 25, 2025
    risk 0.00cvss epss 0.00

    An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.

  • CVE-2025-55554Sep 25, 2025
    risk 0.00cvss epss 0.00

    pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().

  • CVE-2025-46150Sep 25, 2025
    risk 0.00cvss epss 0.00

    In PyTorch before 2.7.0, when torch.compile is used, FractionalMaxPool2d has inconsistent results.

  • CVE-2025-46152Sep 25, 2025
    risk 0.00cvss epss 0.00

    In PyTorch before 2.7.0, bitwise_right_shift produces incorrect output for certain out-of-bounds values of the "other" argument.

  • CVE-2025-55551Sep 25, 2025
    risk 0.00cvss epss 0.00

    An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service (DoS) when performing a slice operation.

  • CVE-2025-46149Sep 25, 2025
    risk 0.00cvss epss 0.00

    In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error.

  • CVE-2025-55558Sep 25, 2025
    risk 0.00cvss epss 0.00

    A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv() and is compiled by Inductor, leading to a Denial of Service (DoS).

  • CVE-2025-55552Sep 25, 2025
    risk 0.00cvss epss 0.00

    pytorch v2.8.0 was discovered to display unexpected behavior when the components torch.rot90 and torch.randn_like are used together.

  • CVE-2025-55553Sep 25, 2025
    risk 0.00cvss epss 0.00

    A syntax error in the component proxy_tensor.py of pytorch v2.7.0 allows attackers to cause a Denial of Service (DoS).

  • CVE-2025-46148Sep 25, 2025
    risk 0.00cvss epss 0.00

    In PyTorch through 2.6.0, when eager is used, nn.PairwiseDistance(p=2) produces incorrect results.

  • CVE-2025-32434Apr 18, 2025
    risk 0.00cvss epss 0.02

    PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural networks built on a tape-based autograd system. In version 2.5.1 and prior, a Remote Command Execution (RCE) vulnerability exists in PyTorch when loading a model using…

  • CVE-2025-3730Apr 16, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, was found in PyTorch 2.6.0. Affected is the function torch.nn.functional.ctc_loss of the file aten/src/ATen/native/LossCTC.cpp. The manipulation leads to denial of service. An attack has to be approached locally. The exploit…

  • CVE-2025-3136Apr 3, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0. This issue affects the function torch.cuda.memory.caching_allocator_delete of the file c10/cuda/CUDACachingAllocator.cpp. The manipulation leads to memory corruption. An attack has to be…

  • CVE-2025-3121Apr 2, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as problematic has been found in PyTorch 2.6.0. Affected is the function torch.jit.jit_module_from_flatbuffer. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public…

  • CVE-2025-3001Mar 31, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical was found in PyTorch 2.6.0. This vulnerability affects the function torch.lstm_cell. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

  • CVE-2025-3000Mar 31, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical has been found in PyTorch 2.6.0. This affects the function torch.jit.script. The manipulation leads to memory corruption. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used.

  • CVE-2025-2999Mar 31, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in PyTorch 2.6.0. It has been rated as critical. Affected by this issue is the function torch.nn.utils.rnn.unpack_sequence. The manipulation leads to memory corruption. Attacking locally is a requirement. The exploit has been disclosed to the public and…

  • CVE-2025-2998Mar 31, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in PyTorch 2.6.0. It has been declared as critical. Affected by this vulnerability is the function torch.nn.utils.rnn.pad_packed_sequence. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has…

  • CVE-2025-2953Mar 30, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0+cu124. Affected by this issue is the function torch.mkldnn_max_pool2d. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed to the…

  • CVE-2025-2149Mar 10, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function nnq_Sigmoid of the component Quantized Sigmoid Module. The manipulation of the argument scale/zero_point leads to improper initialization. The attack needs…

  • CVE-2025-2148Mar 10, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in PyTorch 2.6.0+cu124. It has been declared as critical. Affected by this vulnerability is the function torch.ops.profiler._call_end_callbacks_on_jit_fut of the component Tuple Handler. The manipulation of the argument None leads to memory corruption.…

  • CVE-2024-35198Jul 18, 2024
    risk 0.00cvss epss 0.01

    TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production. TorchServe 's check on allowed_urls configuration can be by-passed if the URL contains characters such as ".." but it does not prevent the model from being downloaded into the…

  • CVE-2024-35199Jul 18, 2024
    risk 0.00cvss epss 0.01

    TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production. In affected versions the two gRPC ports 7070 and 7071, are not bound to [localhost](http://localhost/) by default, so when TorchServe is launched, these two interfaces are bound…

  • CVE-2024-31584Apr 19, 2024
    risk 0.00cvss epss 0.00

    Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csrc/jit/mobile/flatbuffer_loader.cpp.

  • CVE-2024-31580Apr 17, 2024
    risk 0.00cvss epss 0.00

    PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in the component /runtime/vararg_functions.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

  • CVE-2024-31583Apr 17, 2024
    risk 0.00cvss epss 0.00

    Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp.

  • CVE-2023-48299Nov 21, 2023
    risk 0.00cvss epss 0.01

    TorchServe is a tool for serving and scaling PyTorch models in production. Starting in version 0.1.0 and prior to version 0.9.0, using the model/workflow management API, there is a chance of uploading potentially harmful archives that contain files that are extracted to any…

  • CVE-2022-45907Nov 26, 2022
    risk 0.00cvss epss 0.01

    In PyTorch before trunk/89695, torch.jit.annotations.parse_type_line can cause arbitrary code execution because eval is used unsafely.

  • CVE-2022-0845Mar 5, 2022
    risk 0.00cvss epss 0.01

    Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0.

  • CVE-2021-4118Dec 23, 2021
    risk 0.00cvss epss 0.01

    pytorch-lightning is vulnerable to Deserialization of Untrusted Data

  • CVE-2014-6876Oct 2, 2014
    risk 0.00cvss epss 0.00

    The American Express Serve (aka com.serve.mobile) application @7F0901E4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.