id: PYSEC-2025-41
modified: 2025-05-28T15:23:37.843138Z
published: 2025-04-18T16:15:23Z
aliases:
- CVE-2025-32434
- GHSA-53q9-r3pm-6pq6
details: PyTorch is a Python package that provides tensor computation with strong
  GPU acceleration and deep neural networks built on a tape-based autograd system.
  In version 2.5.1 and prior, a Remote Command Execution (RCE) vulnerability exists
  in PyTorch when loading a model using torch.load with weights_only=True. This issue
  has been patched in version 2.6.0.
affected:
- package:
    ecosystem: PyPI
    name: torch
    purl: pkg:pypi/torch
  ranges:
  - type: ECOSYSTEM
    events:
    - introduced: "0"
    - fixed: 2.6.0
  versions:
  - 1.0.0
  - 1.0.1
  - 1.1.0
  - 1.10.0
  - 1.10.1
  - 1.10.2
  - 1.11.0
  - 1.12.0
  - 1.12.1
  - 1.13.0
  - 1.13.1
  - 1.2.0
  - 1.3.0
  - 1.3.1
  - 1.4.0
  - 1.5.0
  - 1.5.1
  - 1.6.0
  - 1.7.0
  - 1.7.1
  - 1.8.0
  - 1.8.1
  - 1.9.0
  - 1.9.1
  - 2.0.0
  - 2.0.1
  - 2.1.0
  - 2.1.1
  - 2.1.2
  - 2.2.0
  - 2.2.1
  - 2.2.2
  - 2.3.0
  - 2.3.1
  - 2.4.0
  - 2.4.1
  - 2.5.0
  - 2.5.1
severity:
- type: CVSS_V3
  score: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
references:
- type: ADVISORY
  url: https://github.com/pytorch/pytorch/security/advisories/GHSA-53q9-r3pm-6pq6