Lucene search
+L

16 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/12/05 5:51 a.m.10 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component uses torch - 2.2.0+cpu which is vulnerable to CVE-2025-32434.

Summary IBM Maximo Application Suite - Monitor Component uses torch - 2.2.0+cpu which is vulnerable to CVE-2025-32434. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2025-32434 DESCRIPTION: PyTorch is a Python package that provides tensor...

9.8CVSS6.9AI score0.01917EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.10 views

Debian dla-4389 : libtorch-dev - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4389 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4389-1 [email protected] https://www.debian.org/lts/security/...

9.8CVSS9.1AI score0.01917EPSS
Exploits1References4
Debian
Debian
added 2025/12/01 1:15 a.m.20 views

[SECURITY] [DLA 4389-1] pytorch security update

Debian LTS Advisory DLA-4389-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert December 01, 2025 https://wiki.debian.org/LTS Package : pytorch Version : 1.7.1-7+deb11u1 CVE ID : CVE-2025-32434 A possible remote code execution RCE vulnerability has been discovered i...

9.8CVSS7.8AI score0.01917EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2025/08/28 3:24 p.m.9 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a Remote Command Execution in PyTorch [CVE-2025-32434]

Summary IBM Watson Speech Services Cartridge is vulnerable to a Remote Command Execution in PyTorch, due to a condition that exists when loading a model using torch.load with weightsonly=True CVE-2025-32434. PyTorch is used in our speech service runtimes. This vulnerabilitiy has been addressed...

9.8CVSS9.1AI score0.01917EPSS
Exploits1Affected Software1
F5 Networks
F5 Networks
added 2025/05/19 2:47 a.m.21 views

K000151398: PyTorch vulnerability CVE-2025-32434

Security Advisory Description PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural networks built on a tape-based autograd system. In version 2.5.1 and prior, a Remote Command Execution RCE vulnerability exists in PyTorch when loading a model...

9.8CVSS9.3AI score0.01917EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/05/06 12:0 a.m.17 views

CBL Mariner 2.0 Security Update: pytorch (CVE-2025-32434)

The version of pytorch installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32434 advisory. - PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural...

9.8CVSS8.5AI score0.01917EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/05/06 12:0 a.m.10 views

Azure Linux 3.0 Security Update: pytorch (CVE-2025-32434)

The version of pytorch installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32434 advisory. - PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural...

9.8CVSS8.5AI score0.01917EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2025/05/05 3:9 p.m.11 views

CVE-2025-32434 affecting package pytorch for versions less than 2.0.0-8

CVE-2025-32434 affecting package pytorch for versions less than 2.0.0-8. A patched version of the package is available...

9.8CVSS7AI score0.01917EPSS
Exploits1
CBLMariner
CBLMariner
added 2025/04/24 3:8 p.m.12 views

CVE-2025-32434 affecting package pytorch for versions less than 2.2.2-6

CVE-2025-32434 affecting package pytorch for versions less than 2.2.2-6. A patched version of the package is available...

9.8CVSS7.3AI score0.01917EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/04/21 6:32 a.m.21 views

CVE-2025-32434

PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural networks built on a tape-based autograd system. In version 2.5.1 and prior, a Remote Command Execution RCE vulnerability exists in PyTorch when loading a model using torch.load with...

9.8CVSS6.5AI score0.01917EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2025/04/18 4:15 p.m.8 views

CVE-2025-32434

PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural networks built on a tape-based autograd system. In version 2.5.1 and prior, a Remote Command Execution RCE vulnerability exists in PyTorch when loading a model using torch.load with...

9.8CVSS7.3AI score0.01917EPSS
Exploits1References2
Circl
Circl
added 2025/04/18 3:58 p.m.6 views

CVE-2025-32434

creationtimestamp| type| source ---|---|--- 2025-04-18 15:58:55+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12473 2025-04-18 16:27:43+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114359904676181462 2025-04-18 18:31:46+00:00| published-proof-of-concept|...

9.8CVSS8AI score0.01917EPSS
Exploits1References43
CVE
CVE
added 2025/04/18 3:48 p.m.964 views

CVE-2025-32434

PyTorch contains a Remote Command Execution (RCE) vulnerability in versions 2.5.1 and earlier when loading a model with torch.load and weights_only=True. The issue is publicly documented and has been patched in version 2.6.0. External notices reiterate that upgrading to 2.6.0+ mitigates the flaw;...

9.8CVSS6.8AI score0.01917EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/18 3:48 p.m.13 views

CVE-2025-32434 PyTorch: `torch.load` with `weights_only=True` leads to remote code execution

PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural networks built on a tape-based autograd system. In version 2.5.1 and prior, a Remote Command Execution RCE vulnerability exists in PyTorch when loading a model using torch.load with...

9.3CVSS6.8AI score0.01917EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/04/18 3:48 p.m.17 views

CVE-2025-32434 PyTorch: `torch.load` with `weights_only=True` leads to remote code execution

PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural networks built on a tape-based autograd system. In version 2.5.1 and prior, a Remote Command Execution RCE vulnerability exists in PyTorch when loading a model using torch.load with...

9.3CVSS0.01917EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2025/04/18 3:19 p.m.4 views

01os (=0.0.14), 21cmpsdenoiser (>=1.0.0 <=1.0.2) +24244 more potentially affected by CVE-2025-32434 via torch (>=2.0.0 <=2.5.1)

torch PYPI version =2.0.0, =1.0.0, =0.1.0, =0.1.3, =0.1.0, =0.1.0, =0.0.1, =0.0.1, =0.10.5, =0.1.0.dev1, =1.0.0, =1.2.0 and more Source cves: CVE-2025-32434 Source advisory: SNYK:PYTHON-TORCH-9788071...

9.8CVSS7.5AI score0.01917EPSS
Exploits1
Rows per page
Query Builder