CVE-2025-54950

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-54950

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-54950.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-54950

Aliases

GHSA-f9hx-c6jf-3qxm

Published

2025-08-07T23:15:26.610Z

Modified

2026-04-10T05:46:47.631279Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An out-of-bounds access vulnerability in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005.

References

Affected packages

Git / github.com/pytorch/executorch

Affected ranges

Type: GIT
Repo: https://github.com/pytorch/executorch
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005

Affected versions

Other

ciflow/binaries/all/sdym

ciflow/binaries/sdym

stable-2023-08-01

stable-2023-08-15

stable-2023-08-29

stable-2023-09-12

stable-2023-09-19

v0.*

v0.1.0-rc1

v0.2.0-rc1

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-54950.json"