Linuxfoundation

Pytorch

27 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2025-46153

  • EPSS 0.08%
  • Veröffentlicht 25.09.2025 15:16:12
  • Zuletzt bearbeitet 03.10.2025 17:56:58

PyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallback_random=True.

5.3

CVE-2025-46152

  • EPSS 0.08%
  • Veröffentlicht 25.09.2025 15:16:12
  • Zuletzt bearbeitet 03.10.2025 17:57:35

In PyTorch before 2.7.0, bitwise_right_shift produces incorrect output for certain out-of-bounds values of the "other" argument.

5.3

CVE-2025-46150

  • EPSS 0.06%
  • Veröffentlicht 25.09.2025 15:16:12
  • Zuletzt bearbeitet 03.10.2025 17:58:05

In PyTorch before 2.7.0, when torch.compile is used, FractionalMaxPool2d has inconsistent results.

5.3

CVE-2025-46149

  • EPSS 0.06%
  • Veröffentlicht 25.09.2025 15:16:12
  • Zuletzt bearbeitet 03.10.2025 17:58:39

In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error.

9.8

CVE-2025-32434

  • EPSS 0.42%
  • Veröffentlicht 18.04.2025 15:48:18
  • Zuletzt bearbeitet 01.12.2025 07:16:01

PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural networks built on a tape-based autograd system. In version 2.5.1 and prior, a Remote Command Execution (RCE) vulnerability exists in PyTorch whe...

5.5

CVE-2025-3730

Exploit
  • EPSS 0.06%
  • Veröffentlicht 16.04.2025 21:00:17
  • Zuletzt bearbeitet 28.05.2025 17:35:54

A vulnerability, which was classified as problematic, was found in PyTorch 2.6.0. Affected is the function torch.nn.functional.ctc_loss of the file aten/src/ATen/native/LossCTC.cpp. The manipulation leads to denial of service. An attack has to be app...

4.8

CVE-2025-3136

Exploit
  • EPSS 0.15%
  • Veröffentlicht 03.04.2025 04:15:38
  • Zuletzt bearbeitet 28.05.2025 15:59:54

A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0. This issue affects the function torch.cuda.memory.caching_allocator_delete of the file c10/cuda/CUDACachingAllocator.cpp. The manipulation leads to memory corrupti...

5.5

CVE-2025-3121

Exploit
  • EPSS 0.09%
  • Veröffentlicht 02.04.2025 22:15:21
  • Zuletzt bearbeitet 27.05.2025 18:29:00

A vulnerability classified as problematic has been found in PyTorch 2.6.0. Affected is the function torch.jit.jit_module_from_flatbuffer. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has b...

5.3

CVE-2025-3001

  • EPSS 0.18%
  • Veröffentlicht 31.03.2025 16:15:27
  • Zuletzt bearbeitet 29.05.2025 15:53:31

A vulnerability classified as critical was found in PyTorch 2.6.0. This vulnerability affects the function torch.lstm_cell. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the ...

5.3

CVE-2025-3000

  • EPSS 0.1%
  • Veröffentlicht 31.03.2025 15:15:46
  • Zuletzt bearbeitet 29.05.2025 15:53:39

A vulnerability classified as critical has been found in PyTorch 2.6.0. This affects the function torch.jit.script. The manipulation leads to memory corruption. It is possible to launch the attack on the local host. The exploit has been disclosed to ...