CNNVD-202508-722 Information

CNNVD ID

CNNVD-202508-722

Related CVE

CVE-2025-54950

• CNNVD Published: 2025-08-07

Description (Chinese)

executorch是pytorch开源的一个PyTorch的部署工具。 executorch存在安全漏洞，该漏洞源于加载模型时存在越界访问，可能导致崩溃或代码执行。

Description (English)

Executorch is a PyTorch deployment tool for pytorch. There is a security loophole in executorch, which stems from the presence of cross-border access at the time of loading of the model, which could lead to collapse or code enforcement.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

PyTorch

Published

2025-08-07

Last Modified

2026-02-24

References

https://github.com/pytorch/executorch/commit/fb03b6f85596a8f954d97929075335255b6a58d4 https://www.facebook.com/security/advisories/cve-2025-54950 https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005 https://access.redhat.com/security/cve/cve-2025-54950