PYSEC-2026-334

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/executorch/PYSEC-2026-334.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2026-334
Aliases
Published
2026-06-29T11:50:37.795816Z
Modified
2026-07-01T20:22:52.477033Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
ExecuTorch out-of-bounds access vulnerability
Details

An out-of-bounds access vulnerability in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit fb03b6f85596a8f954d97929075335255b6a58d4.

References

Affected packages

PyPI / executorch

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.0

Affected versions

0.*
0.1.0
0.1.2
0.2.0
0.2.1
0.3.0
0.4.0
0.5.0
0.6.0

Database specific

source
"https://github.com/pypa/advisory-database/blob/main/vulns/executorch/PYSEC-2026-334.yaml"