CVE-2025-3121

PYSEC-2025-196 · BIT-pytorch-2025-3121 · CVE-2025-3121

Published Apr 2, 2025 · Modified May 21, 2026

Description

A vulnerability classified as problematic has been found in PyTorch 2.6.0. Affected is the function torch.jit.jit_module_from_flatbuffer. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

References

ADVISORY https://vuldb.com/?id.303012
REPORT https://github.com/pytorch/pytorch/issues/149800
REPORT https://github.com/pytorch/pytorch/issues/149800#issue-2940240700
REPORT https://vuldb.com/?ctiid.303012
EVIDENCE https://vuldb.com/?submit.525049

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes