| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-4538 | PyTorch pt2 Loading deserialization | - | PyTorch | Medium | 5.3 | 2026-03-22 04:20:28 | Deep Dive |
| CVE-2026-24747 | PyTorch Vulnerable to Remote Code Execution via Untrusted Checkpoint Files | pytorch | pytorch | High | 8.8 | 2026-01-27 21:13:47 | Deep Dive |
| CVE-2025-4287 | PyTorch nccl.py torch.cuda.nccl.reduce denial of service | - | PyTorch | Low | 3.3 | 2025-05-05 20:00:11 | Deep Dive |
| CVE-2025-32434 | PyTorch: `torch.load` with `weights_only=True` leads to remote code execution | pytorch | pytorch | 超危 | - | 2025-04-18 15:48:19 | Deep Dive |
| CVE-2025-3730 | PyTorch LossCTC.cpp torch.nn.functional.ctc_loss denial of service | - | PyTorch | Low | 3.3 | 2025-04-16 21:00:18 | Deep Dive |
| CVE-2025-3136 | PyTorch CUDACachingAllocator.cpp torch.cuda.memory.caching_allocator_delete memory corruption | - | PyTorch | Low | 3.3 | 2025-04-03 03:31:06 | Deep Dive |
| CVE-2025-3121 | PyTorch torch.jit.jit_module_from_flatbuffer memory corruption | - | PyTorch | Low | 3.3 | 2025-04-02 22:00:12 | Deep Dive |
| CVE-2025-3001 | PyTorch torch.lstm_cell memory corruption | - | PyTorch | Medium | 5.3 | 2025-03-31 15:31:05 | Deep Dive |
| CVE-2025-3000 | PyTorch torch.jit.script memory corruption | - | PyTorch | Medium | 5.3 | 2025-03-31 15:00:11 | Deep Dive |
| CVE-2025-2999 | PyTorch torch.nn.utils.rnn.unpack_sequence memory corruption | - | PyTorch | Medium | 5.3 | 2025-03-31 14:31:05 | Deep Dive |
| CVE-2025-2998 | PyTorch torch.nn.utils.rnn.pad_packed_sequence memory corruption | - | PyTorch | Medium | 5.3 | 2025-03-31 14:00:12 | Deep Dive |
| CVE-2025-2953 | PyTorch torch.mkldnn_max_pool2d denial of service | - | PyTorch | Low | 3.3 | 2025-03-30 15:31:05 | Deep Dive |
| CVE-2024-6577 | Unclaimed S3 Bucket Usage in pytorch/serve | pytorch | pytorch/serve | 中危 | - | 2025-03-20 10:10:37 | Deep Dive |
| CVE-2024-8020 | Denial of Service in lightning-ai/pytorch-lightning | lightning-ai | lightning-ai/pytorch-lightning | 高危 | - | 2025-03-20 10:09:27 | Deep Dive |
| CVE-2024-8019 | Arbitrary File Write/Overwrite in lightning-ai/pytorch-lightning | lightning-ai | lightning-ai/pytorch-lightning | 超危 | - | 2025-03-20 10:08:49 | Deep Dive |
| CVE-2025-2149 | PyTorch Quantized Sigmoid Module nnq_Sigmoid initialization | - | PyTorch | Low | 2.5 | 2025-03-10 12:31:05 | Deep Dive |
| CVE-2025-2148 | PyTorch Tuple torch.ops.profiler._call_end_callbacks_on_jit_fut memory corruption | - | PyTorch | Medium | 5.0 | 2025-03-10 12:00:08 | Deep Dive |
| CVE-2024-35198 | TorchServe bypass allowed_urls configuration | pytorch | serve | Critical | 9.8 | 2024-07-18 22:40:08 | Deep Dive |
| CVE-2024-35199 | TorchServe gRPC Port Exposure | pytorch | serve | High | 8.2 | 2024-07-18 22:40:07 | Deep Dive |
| CVE-2024-5980 | Arbitrary File Write via /v1/runs API endpoint in lightning-ai/pytorch-lightning | lightning-ai | lightning-ai/pytorch-lightning | - | - | 2024-06-27 18:46:39 | Deep Dive |