CVE-2025-54949 | THREATINT

Description

A heap buffer overflow vulnerability in the loading of ExecuTorch models can potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit ede82493dae6d2d43f8c424e7be4721abe5242be

PUBLISHED Reserved 2025-08-01 | Published 2025-08-07 | Updated 2025-08-12 | Assigner facebook

Problem types

Heap-based Buffer Overflow (CWE-122)

Product status

Default status

unaffected

Any version before https://github.com/pytorch/executorch/commit/ede82493dae6d2d43f8c424e7be4721abe5242be

affected

References

www.facebook.com/security/advisories/cve-2025-54949

github.com/...ommit/ede82493dae6d2d43f8c424e7be4721abe5242be

cve.org (CVE-2025-54949)

nvd.nist.gov (CVE-2025-54949)

Download JSON