Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
PYSEC-2026-3043
  • PyPI/pytorch-lightning
PyTorch Lightning load_from_checkpoint has an insecure checkpoint deserialization 5 days ago
  • No fix available
  • Severity - 7.8 (High)
PYSEC-2026-1857
  • PyPI/pytorch-lightning
PyTorch Lightning denial of service vulnerability 07 Jul
  • No fix available
  • Severity - 7.5 (High)
PYSEC-2026-508
  • PyPI/pytorch-lightning
Compromise of PyTorch Lightning PyPi Package Versions 29 Jun
  • No fix available
  • Severity - 9.3 (Critical)
PYSEC-2026-385
  • PyPI/lightning
Remote code execution in pytorch lightning 29 Jun
  • Fix available
  • Severity - 9.8 (Critical)
PYSEC-2026-386
  • PyPI/lightning
pytorch-lightning vulnerable to Arbitrary File Write via /v1/runs API endpoint 29 Jun
  • Fix available
  • Severity - 9.1 (Critical)
PYSEC-2026-507
  • PyPI/pytorch-lightning
PyTorch Lightning path traversal vulnerability 29 Jun
  • Fix available
  • Severity - 9.1 (Critical)
GHSA-75m9-98v2-hjpm
  • PyPI/pytorch-lightning
PyTorch Lightning load_from_checkpoint has an insecure checkpoint deserialization 12 May
  • No fix available
  • Severity - 7.8 (High)
GHSA-w37p-236h-pfx3
  • PyPI/pytorch-lightning
Compromise of PyTorch Lightning PyPi Package Versions 07 May
  • No fix available
  • Severity - 9.3 (Critical)
MAL-2026-3201
  • PyPI/lightning
Malicious code in lightning (PyPI) 30 Apr
  • No fix available
GHSA-98fp-7v67-4v3q
  • PyPI/pytorch-lightning
PyTorch Lightning denial of service vulnerability 20 Mar 2025
  • No fix available
  • Severity - 7.5 (High)
GHSA-4cv3-v7pv-rfhf
  • PyPI/pytorch-lightning
PyTorch Lightning path traversal vulnerability 20 Mar 2025
  • Fix available
  • Severity - 9.1 (Critical)
GHSA-mr7h-w2qc-ffc2
  • PyPI/lightning
pytorch-lightning vulnerable to Arbitrary File Write via /v1/runs API endpoint 27 Jun 2024
  • Fix available
  • Severity - 9.1 (Critical)
GHSA-cgwc-qvrx-rf7f
  • PyPI/lightning
Remote code execution in pytorch lightning 06 Jun 2024
  • Fix available
  • Severity - 9.8 (Critical)
GHSA-r5qj-cvf9-p85h
  • PyPI/pytorch-lightning
Code Injection in PyTorch Lightning 06 Mar 2022
  • Fix available
  • Severity - 9.3 (Critical)
PYSEC-2022-181
  • PyPI/pytorch-lightning
  • github.com/pytorchlightning/pytorch-lightning
See record for full details 05 Mar 2022
  • Fix available
GHSA-2vj5-px25-gjrp
  • PyPI/pytorch-lightning
pytorch-lightning is vulnerable to Deserialization of Untrusted Data 06 Jan 2022
  • Fix available
  • Severity - 8.5 (High)