1135 matches found
CVE-2025-55553
CVE-2025-55553 is described across sources as a DoS vulnerability in PyTorch v2.7.0 caused by a syntax error in the proxy_tensor.py component. The linked documents (NVD/NIST entry and IBM watsonx bulletin listing this CVE among PyTorch-related issues) confirm the affected product and the basic fl...
CVE-2025-55554
PyTorch v2.8.0 has an integer overflow in the torch.nan_to_num-.long() path (CVE-2025-55554). This is reported across multiple sources (NVD, OSV, CNVD, etc.). The connected documents do not provide concrete exploit details or available patches/remediation. No exploitation status is given in the s...
PyTorch 安全漏洞
PyTorch is a Python package open-sourced by PyTorch. An integer overflow vulnerability exists in the PyTorch torch.nantonum-.long component, no details of the vulnerability are available at this time...
CVE-2025-46148
CVE-2025-46148 affects PyTorch up to version 2.6.0 when using eager execution, where nn.PairwiseDistance(p=2) can produce incorrect results. Connected entries (BIT-PYTORCH-2025-46148, NVD, OSV variants, Debian/Ubuntu OSV, CNVD) corroborate the issue with identical description. The vulnerability i...
CVE-2025-46148
In PyTorch through 2.6.0, when eager is used, nn.PairwiseDistancep=2 produces incorrect results...
PyTorch 安全漏洞
PyTorch is a Python package open-sourced by PyTorch. PyTorch suffers from an information disclosure vulnerability that stems from nn.PairwiseDistancep=2 producing incorrect results in eager mode, no details of the vulnerability are provided at this time...
PT-2025-39379
Name of the Vulnerable Software and Affected Versions PyTorch versions through 2.6.0 Description When eager mode is used, the nn.PairwiseDistancep=2 function in PyTorch produces incorrect results. The p parameter in the nn.PairwiseDistance function determines the distance metric. A value of 2...
CVE-2025-46150
In PyTorch before 2.7.0, when torch.compile is used, FractionalMaxPool2d has inconsistent results...
CVE-2025-46152
In PyTorch before 2.7.0, bitwiserightshift produces incorrect output for certain out-of-bounds values of the "other" argument...
CVE-2025-55553
A syntax error in the component proxytensor.py of pytorch v2.7.0 allows attackers to cause a Denial of Service DoS...
CVE-2025-55552
pytorch v2.8.0 was discovered to display unexpected behavior when the components torch.rot90 and torch.randnlike are used together...
CVE-2025-55560
An issue in pytorch v2.7.0 can lead to a Denial of Service DoS when a PyTorch model consists of torch.Tensor.tosparse and torch.Tensor.todense and is compiled by Inductor...
PT-2025-39416
Name of the Vulnerable Software and Affected Versions pytorch version 2.7.0 Description A buffer overflow can occur when a PyTorch model includes torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and is compiled using Inductor. This can lead to a Denial of Service Do...
CVE-2025-46150
CVE-2025-46150 is referenced in connected IBM bulletin as affecting PyTorch: prior to 2.7.0, using torch.compile can cause FractionalMaxPool2d to produce inconsistent results. The IBM document lists the CVE entry and its description but provides no technical details on root cause, vulnerable vers...
PT-2025-39415
Name of the Vulnerable Software and Affected Versions pytorch version 2.7.0 Description A Name Error occurs when a PyTorch model includes torch.cummin and is compiled by Inductor, resulting in a Denial of Service DoS. The issue involves a naming conflict during the compilation process, leading to...
CVE-2025-46150
In PyTorch before 2.7.0, when torch.compile is used, FractionalMaxPool2d has inconsistent results...
CVE-2025-46149
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
CVE-2025-55554
pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nantonum-.long...
CVE-2025-46148
In PyTorch through 2.6.0, when eager is used, nn.PairwiseDistancep=2 produces incorrect results...
CVE-2025-55557
A Name Error occurs in pytorch v2.7.0 when a PyTorch model consists of torch.cummin and is compiled by Inductor, leading to a Denial of Service DoS...