CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Github Security Blog•added 2025/03/20 12:32 p.m.•33 views

Withdrawn Advisory: PyTorch deserialization vulnerability

Withdrawn Advisory This advisory has been withdrawn because it describes known functionality of PyTorch. This link is maintained to preserve external references. Original Description A deserialization vulnerability exists in the Pytorch RPC framework torch.distributed.rpc in pytorch/pytorch...

6.3AI score

Exploits0References4Affected Software1

Cvelist•added 2025/03/20 10:11 a.m.•34 views

CVE-2024-7804

...

Exploits0

CVE•added 2025/03/20 10:11 a.m.•73 views

CVE-2024-7804

This CVE entry is rejected/not used and does not represent an active vulnerability entry.

9.8AI score

Exploits0

Veracode•added 2024/06/28 5:52 a.m.•10 views

Remote Code Execution (RCE)

torch is vulnerable to Remote Code Execution RCE. The vulnerability is caused by a lack of restriction on function calls when a worker node sends a PythonUDF to the master node, which then executes the function without proper validation within the torch.distributed.rpc framework. This allows...

8.1AI score

Exploits0References2Affected Software1

RedhatCVE•added 2024/06/27 1:25 p.m.•34 views

CVE-2024-5480

A vulnerability in PyTorch's torch.distributed.rpc framework, specifically in versions prior to 2.2.2, allows for remote code execution RCE. The framework, which is used in distributed training scenarios, does not properly verify the functions being called during RPC Remote Procedure Call...

8.2AI score

Exploits0References3

Tenable Nessus•added 2024/06/25 12:0 a.m.•27 views

PyTorch < 2.2.2 RCE

The remote host contains a torchserve version that is prior to 2.2.2. It is, therefore, affected by a remote code execution vulnerability. A vulnerability in the PyTorch's torch.distributed.rpc framework, specifically in versions prior to 2.2.2, allows for remote code execution RCE. The framework...

6.8AI score

Exploits0References2

NVD•added 2024/06/06 7:16 p.m.•13 views

CVE-2024-5480

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

Exploits0

OSV•added 2024/06/06 7:16 p.m.•7 views

CVE-2024-5480

A vulnerability in the PyTorch's torch.distributed.rpc framework, specifically in versions prior to 2.2.2, allows for remote code execution RCE. The framework, which is used in distributed training scenarios, does not properly verify the functions being called during RPC Remote Procedure Call...

8.1AI score

Exploits0References2

UbuntuCve•added 2024/06/06 7:16 p.m.•60 views

CVE-2024-5480

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score

Exploits0References2

Vulnrichment•added 2024/06/06 6:17 p.m.•13 views

CVE-2024-5480

...

9.5AI score

Exploits0

Cvelist•added 2024/06/06 6:17 p.m.•16 views

CVE-2024-5480

...

Exploits0

CVE•added 2024/06/06 6:17 p.m.•87 views

CVE-2024-5480

CVE-2024-5480 is a valid vulnerability describing a remote code execution in PyTorch’s torch.distributed.rpc framework prior to version 2.2.2. Red Hat’s entry details an RCE arising when a worker serializes and sends a PythonUDF to the master and the master deserializes/executes it without proper...

8.6AI score

Exploits0

Debian CVE•added 2024/06/06 6:17 p.m.•16 views

CVE-2024-5480

Removed by vendor...

6.7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by