CVE-2025-54951

critical

Description

A group of related buffer overflow vulnerabilities in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit cea9b23aa8ff78aff92829a466da97461cc7930c.

References

https://www.facebook.com/security/advisories/cve-2025-54951

https://github.com/pytorch/executorch/commit/cea9b23aa8ff78aff92829a466da97461cc7930c

Details

Source: Mitre, NVD

Published: 2025-08-07

Updated: 2025-08-12

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00019