Security context
What an agent needs to avoid regressing past fixes — and find the next bug in this project.
43
Advisories
43
CVEs
Critical
Peak severity
30
With fix diff
Distribution
By severity
Critical
4
High
11
Medium
11
Low
7
Unrated
10
By weakness class
Other
35
Memory Safety
5
Deserialization
1
Use After Free
1
Command Injection
1
Every fixed vulnerability (43)
Critical4 fixed
CriticalPyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural networks built on a tape-based autograd system. In version 2.5.1 and prior, a Remote Command ECVE-2025-324341y agoCriticalPyTorch: `torch.load` with `weights_only=True` leads to remote code executionCVE-2025-324341y agoCriticalIn PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by multiple parties because this is intended behavior in PyTorch distributed computing.CVE-2024-480631y agoCriticalPyTorch vulnerable to arbitrary code executionCVE-2022-459073y ago
High11 fixed
HighA vulnerability was identified in PyTorch 2.10.0. The affected element is an unknown function of the component pt2 Loading Handler. The manipulation leads to deserialization. The attack can only be peCVE-2026-45383mo agoHighPyTorch is a Python package that provides tensor computation. Prior to version 2.10.0, a vulnerability in PyTorch's `weights_only` unpickler allows an attacker to craft a malicious checkpoint file (`.CVE-2026-247475mo agoHighAn issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.CVE-2025-555609mo agoHighA buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv() and is compiled by Inductor, leading to a CVE-2025-555589mo agoHighA Name Error occurs in pytorch v2.7.0 when a PyTorch model consists of torch.cummin and is compiled by Inductor, leading to a Denial of Service (DoS).CVE-2025-555579mo agoHighA syntax error in the component proxy_tensor.py of pytorch v2.7.0 allows attackers to cause a Denial of Service (DoS).CVE-2025-555539mo agoHighpytorch v2.8.0 was discovered to display unexpected behavior when the components torch.rot90 and torch.randn_like are used together.CVE-2025-555529mo agoHighAn issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service (DoS) when performing a slice operation.CVE-2025-555519mo agoHighA vulnerability was found in PyTorch 2.6.0+cu124. It has been declared as critical. Affected by this vulnerability is the function torch.ops.profiler._call_end_callbacks_on_jit_fut of the component TuCVE-2025-21481y agoHighPyTorch heap buffer overflow vulnerabilityCVE-2024-315802y agoHighPytorch use-after-free vulnerabilityCVE-2024-315832y ago
Medium11 fixed
Mediumpytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().CVE-2025-555549mo agoMediumPyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d,CVE-2025-461539mo agoMediumIn PyTorch before 2.7.0, bitwise_right_shift produces incorrect output for certain out-of-bounds values of the "other" argument.CVE-2025-461529mo agoMediumIn PyTorch before 2.7.0, when torch.compile is used, FractionalMaxPool2d has inconsistent results.CVE-2025-461509mo agoMediumIn PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error.CVE-2025-461499mo agoMediumIn PyTorch through 2.6.0, when eager is used, nn.PairwiseDistance(p=2) produces incorrect results.CVE-2025-461489mo agoMediumPyTorch Improper Resource Shutdown or Release vulnerabilityCVE-2025-37301y agoMediumA vulnerability classified as problematic has been found in PyTorch 2.6.0. Affected is the function torch.jit.jit_module_from_flatbuffer. The manipulation leads to memory corruption. Local access is rCVE-2025-31211y agoMediumPyTorch is Vulnerable to Memory Consumption through pad_packed_sequence FunctionCVE-2025-29981y agoMediumPyTorch is vulnerable to memory corruption through its unpack_sequence functionCVE-2025-29991y agoMediumA vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0+cu124. Affected by this issue is the function torch.mkldnn_max_pool2d. The manipulation leads to denial of serviceCVE-2025-29531y ago
Low7 fixed
LowPyTorch Improper Resource Shutdown or Release vulnerabilityCVE-2025-37309d agoLowAn issue was discovered in PyTorch v2.5 and v2.7.1. Omission of profiler.stop() can cause torch.profiler.profile (PythonTracer) to crash or hang during finalization, leading to a Denial of Service (DoCVE-2025-633968mo agoLowPyTorch is vulnerable to memory corruption through its torch.lstm_cell functionCVE-2025-30011y agoLowPyTorch is vulnerable to memory corruption through its torch.jit.script functionCVE-2025-30001y agoLowPyTorch susceptible to local Denial of ServiceCVE-2025-29531y agoLowPyTorch: Manipulation of the argument scale/zero_point leads to improper initialization via Quantized Sigmoid ModuleCVE-2025-21491y agoLowPyTorch Tuple Handler is Vulnerable to Memory Corruption through Manipulation of None ArgumentCVE-2025-21481y ago
Unrated10 fixed
UnratedA vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0. This issue affects the function torch.cuda.memory.caching_allocator_delete of the file c10/cuda/CUDACachingAllocaCVE-2025-31361y agoUnratedA vulnerability classified as critical was found in PyTorch 2.6.0. This vulnerability affects the function torch.lstm_cell. The manipulation leads to memory corruption. The attack needs to be approachCVE-2025-30011y agoUnratedA vulnerability classified as critical has been found in PyTorch 2.6.0. This affects the function torch.jit.script. The manipulation leads to memory corruption. It is possible to launch the attack on CVE-2025-30001y agoUnratedA vulnerability was found in PyTorch 2.6.0. It has been rated as critical. Affected by this issue is the function torch.nn.utils.rnn.unpack_sequence. The manipulation leads to memory corruption. AttacCVE-2025-29991y agoUnratedA vulnerability was found in PyTorch 2.6.0. It has been declared as critical. Affected by this vulnerability is the function torch.nn.utils.rnn.pad_packed_sequence. The manipulation leads to memory coCVE-2025-29981y agoUnratedA vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function nnq_Sigmoid of the component Quantized Sigmoid Module. The manipulation of thCVE-2025-21491y agoUnratedPytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csrc/jit/mobile/flatbuffer_loader.cpp.CVE-2024-315842y agoUnratedPytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp.CVE-2024-315832y agoUnratedPyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in the component /runtime/vararg_functions.cpp. This vulnerability allows attackers to cause a Denial of Service (DCVE-2024-315802y agoUnratedIn PyTorch before trunk/89695, torch.jit.annotations.parse_type_line can cause arbitrary code execution because eval is used unsafely.CVE-2022-459073y ago