CVE-2025-54950

9.8 CRITICAL

Published: August 07, 2025 Modified: April 15, 2026

Description

An out-of-bounds access vulnerability in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005

Source: cve-assign@fb.com

https://www.facebook.com/security/advisories/cve-2025-54950

Source: cve-assign@fb.com

2 reference(s) from NVD

Quick Stats

CVSS v3 Score

9.8 / 10.0

EPSS (Exploit Probability)

0.2%

44th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-125

Related CVEs

CVE-2026-6574 7.3

CVE-2026-6573 6.3

CVE-2026-6572 5.6

CVE-2026-6571 6.3

CVE-2026-6570 2.7