repository icon
pytorch / pytorch Project repository

Tensors and Dynamic neural networks in Python with strong GPU acceleration

Submit a report

FIRST INTERACTION

WITHINN/A DAYS

REVIEW

WITHIN19 DAYS

FIX

WITHINN/A DAYS

`torch.export.load()` RCE via unsanitized `guards_code` strings executed by `exe...
11x-x11
duplicate
High
RCE via torch.load(weights_only=False) in PT2 archive loading — use_pickle flag...
snakeyworm
duplicate
None
Arbitrary Code Execution via Insecure Deserialization in torch.hub.load_state_di...
finddabugs
duplicate
High
PyTorch torch.hub.load_state_dict_from_url() Untrusted Deserialization Remote Co...
yamemres
duplicate
Critical
`weights_only=False` Silent Fallback in ExportedProgram Deserialization — RCE vi...
jtjisgod
duplicate
High
Incorrect Default Permissions
projectworks007
self closed
Remote Code Execution via `load_state_dict_from_url` Defaulting to `weights_only...
buttergolemcode
duplicate
High
Unsafe Pickle Deserialization in Distributed Checkpoint Metadata Loading Allows...
elucidator-hky
self closed
Unauthenticated RCE via TensorPipe RPC agent pickle deserialization on network l...
eistee82
self closed
Unsafe eval() of cached guard expressions in Inductor/AOTAutograd cache enables...
elucidator-hky
self closed
Unsafe pickle.loads() and torch.load(weights_only=False) in DataPipe Decoder, Ch...
elucidator-hky
self closed
Full SSRF + Reflected XSS via TCPStore Poisoning in torch.distributed.debug
mscgo
self closed
Unsafe default deserialization path in RoutedDecoder allows code execution from...
4ur0n
self closed
PyTorch FileStore Path Traversal Allows Arbitrary File Write Outside Sandbox
amadhan882
self closed
Arbitrary Code Execution via Unsanitized pickle.load() in Distributed Checkpoint...
wernerina
duplicate
High
Arbitrary Code Execution in torch.distributed.checkpoint.load() via Unsafe Pickl...
eigentum
duplicate
Critical
Arbitrary Memory Corruption and DoS via Out-of-Bounds Sparse Tensor Deserializat...
catalyzer9867
duplicate
High
Unauthenticated Remote Code Execution (RCE) via State Machine Bypass in torch.di...
catalyzer9867
self closed
Command Injection in PyTorch Dynamo Benchmark Runner
alrightryanx
pending
Insecure Deserialization via pickle.loads() in PyTorch DataPipes Decoder
galanzi2580-wq
pending
Remote Code Execution via eval() on Untrusted Dump Data in PyTorch Flight Record...
galanzi2580-wq
pending
Command injection via unsanitized compiler flags in `torch.utils.cpp_extension`...
l1iith
pending
Zip Slip arbitrary file write via unsafe extractall() in torch.export.experiment...
l1iith
pending
Remote Code Execution (RCE) via Insecure Pickle Deserialization in torch.load
sebas5207418
pending
Out-of-bounds read via unchecked class_type() index in flatbuffer module loader
jeongmin-choi00
self closed
Zip Slip arbitrary file write in torch.hub.load_state_dict_from_url() legacy zip...
theagentknownasren-gif
pending
Zip Slip arbitrary file write in torch.hub.load_state_dict_from_url() legacy zip...
theagentknownasren-gif
pending
PyTorch Quantization Extreme Scale NaN Corruption - DoS via Model Corruption
spamblue890-oss
self closed
Path Traversal in DirectoryReader
yashvardhantrip
pending
Remote Code Execution via unsafe pickle.loads() in DataPipes basichandlers()
red-base
pending
PyTorch `weights_only=True` Remote Code Execution Vulnerability
orenyomtov
duplicate
High
DoS via Unbounded Memory Allocation in Sparse Tensor Deserialization (weights_on...
ahmetartuc
pending
PyTorch torch.cuda.memory_viz CLI: pickle.load() on user-controlled input leads...
nn0nkey
duplicate
High
PyTorch's `DefaultLoadPlanner` torch.load(weights_only=False) leads to Remote Co...
nn0nkey
duplicate
High
Remote Code Execution in torch.export.load via Unsafe Deserialization
daddyjamwal
duplicate
High
Permanent Denial of Service (DoS) via _ntuple_from_first
janetcohen
pending
Unsafe fallback in deserialize_torch_artifact enables RCE despite weights_only=T...
pandas0531
self closed
PyTorch PGO Remote Cache Deserialization Vulnerability
cherno-x
duplicate
Critical
Command Injection in torch.jit.annotations.parse_type_line
decadeofdata
pending
RCE via TorchScript Deserialization in PyTorch
lau90eth
pending
Out-of-Bounds Memory Write Affecting Pytorch Deserialization
kattraxler
pending
Out-of-Bounds Memory Read Affecting Pytorch Deserialization
kattraxler
pending
Arbitrary Code Execution via Insecure Deserialization in torch.load()
yousefabdelmohymen
duplicate
High
PyTorch torch.load(..., weights_only=False) can lead to RCE
bertram2000
duplicate
Critical
Add out_dtype parameter support to torch.einsum
rudymentale
pending
NULL Pointer Dereference in PyTorch Third-party Miniz Library Examples
vutuanviet123
pending
CSV Injection Vulnerabilities in PyTorch Benchmarking Utilities
vutuanviet123
pending
Server-Side Request Forgery (SSRF) Vulnerabilities in PyTorch Statistics Upload...
vutuanviet123
pending
Command Injection Vulnerabilities in PyTorch C++ Extension Compiler Detection an...
vutuanviet123
pending
Remote Code Execution via Unsafe Deserialization in PyTorch Model Debugging and...
vutuanviet123
duplicate
Critical
Remote Code Execution via Unsafe Deserialization in PyTorch Model Debugging and...
vutuanviet123
self closed
Command Injection Vulnerabilities in PyTorch C++ Extension Compiler Detection
vutuanviet123
self closed
Division By Zero Vulnerability in PyTorch Loss Functions
vutuanviet123
pending
Path Traversal Vulnerability in PyTorch CUDA Kernels Generation
vutuanviet123
pending
Arbitrary Code Execution via pickle.load() in Distributed Checkpoint Loading
perfecxion-ai
self closed
Silent incorrect gradient
shemshallah
pending
Numerical instability
shemshallah
pending
Numerical instability
shemshallah
pending
torch.package Path-Traversal Enables Arbitrary File Write
ashmitsh4rma
self closed
Denial of Service via Excessive GPU/CPU Memory Allocation in torch.nested.to_pad...
joelindra
pending
CUDA GPU-side buffer overflow (arbitrary-write within 2 GiB)
jwnhy
pending
Script injection for loading remote models using "torch.hub.load"
l1k3beef
pending
Data Corruption in PyTorch functionalize Due to Expired Pointer Dereference with...
ashfiexe
pending
The pytorch/torch/distributed/rpc/__init__.py file can be modified locally, lead...
hexian2001
informative
High
PyTorch Distributed RPC Framework rpc.remote has Deserialization RCE
hexian2001
self closed
Deserialization of untrusted data in Pytorch RPC Framework
xbalien
Critical
$1500CVE-2024-7804
Command injection via unsafe pickle.loads in torch.utils.model_dump
sunrisexu
informative
High
Command injection in release_notes/common.py
kr3ww
informative
Critical
Insecure Temporary File
h2oa
not applicable
PyTorch Distributed RPC Framework Remote Code Execution
xbalien
Critical
$1500CVE-2024-5480
jinja2 autoescape not enabled
dmandefy
informative
High
Remote Code Execution (RCE)
ready-research
self closed
ReDOS
mtrill47
self closed
Classic buffer overflow in "torch_shm_manager"
ewa-kr
informative
High
torch.hub.load_state_dict_from_url is vulnerable to RCE if malicious file is imp...
c3l3si4n
informative
High
Command Injection in PyTorch
danmcinerney
not applicable
XSS in Caffe2's Flask App included in PyTorch
danmcinerney
pending
Deserialization of Untrusted Data
asjidkalam
pending
Code Injection
b3ef
pending