CVE-2025-2998 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-2998 PUBLISHED

A vulnerability was found in PyTorch 2.6.0. It has been declared as critical. Affected by this vulnerability is the function torch.nn.utils.rnn.pad_packed_sequence. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

EPSS 0.14% · 33.8th percentile

Risk Scores

EPSS Score

0.14%

33.8th percentile

Affected Products

Vendor	Product	Versions
Bitnami	pytorch	2.6.0
Bitnami	pytorch	2.6.0

Timeline

Mar 31, 2025 Coalition ESS Score
Mar 31, 2025 CVE Published
Mar 31, 2025 CVE Updated
Apr 1, 2025 EPSS Score
Apr 2, 2025 Coalition ESS Score
Apr 13, 2025 EPSS Score
Apr 26, 2025 EPSS Score
May 8, 2025 EPSS Score
May 20, 2025 EPSS Score
May 29, 2025 Coalition ESS Score
Jun 2, 2025 EPSS Score
Jun 14, 2025 EPSS Score

References

Open in Interactive Console →