CVE-2024-31583

🗓️ 17 Apr 2024 00:00:00Reported by mitreType

cve

cve🔗 web.nvd.nist.gov👁 63 Views

PyTorch v2.2.0 use-after-free vulnerabilit

Reporter	Title	Published	Views	Family All 28
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a a denial of service in PyTorch [CVE-2024-31583]	28 Jan 202522:08	–	ibm
IBM Security Bulletins	Security Bulletin: Maximo Application Suite - torch-1.13.1-cp37-cp37m-manylinux1_x86_64.whl is vulnerable to multiple security CVEs used in IBM Maximo Application Suite - Monitor Component	25 Jun 202422:08	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use mapping assistance are vulnerable to denial of service [CVE-2024-31580] [CVE-2024-31583]	31 Jul 202413:39	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in PyTorch [CVE-2024-31583]	5 Nov 202404:31	–	ibm
CBLMariner	CVE-2024-31583 affecting package pytorch for versions less than 2.0.0-4	30 Apr 202401:31	–	cbl_mariner
Circl	CVE-2024-31583	19 Jan 202611:35	–	circl
CNNVD	PyTorch 安全漏洞	17 Apr 202400:00	–	cnnvd
Cvelist	CVE-2024-31583	17 Apr 202400:00	–	cvelist
Debian CVE	CVE-2024-31583	17 Apr 202400:00	–	debiancve
Github Security Blog	Pytorch use-after-free vulnerability	17 Apr 202421:30	–	github

NVD

Vulnrichment

Node

linuxfoundation pytorchRange<2.2.0python

Source	Link
github	www.github.com/pytorch/pytorch/commit/9c7071b0e324f9fb68ab881283d6b8d388a4bcd2
github	www.github.com/pytorch/pytorch/blob/v2.1.2/torch/csrc/jit/mobile/interpreter.cpp
gist	www.gist.github.com/1047524396/43e19a41f2b36503a4a228c32cdbc176

10 Jun 2025 01:33Current

7.1High risk

Vulners AI Score7.1

CVSS 3.17.8

EPSS0.00049

SSVC

pytorch v2.2.0 use-after-free vulnerability nvd