VDB
CVE-2025-3136
CVE-2025-3136
PUBLISHED
A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0. This issue affects the function torch.cuda.memory.caching_allocator_delete of the file c10/cuda/CUDACachingAllocator.cpp. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.
EPSS 0.06% · 19.5th percentile
Risk Scores
EPSS Score
0.06%
19.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | pytorch | 2.6.0 |
| Bitnami | pytorch | 2.6.0 |
Exploit Intelligence
- https://github.com/pytorch/pytorch/issues/149821 (nist-nvd)
- https://github.com/pytorch/pytorch/issues/149821#issuecomment-2765311086 (nist-nvd)
- https://vuldb.com/?submit.525252 (nist-nvd)
- https://github.com/ARPANET-cybersecurity/vuldb/issues/2 (cve.org)
- https://github.com/pytorch/pytorch/issues/149821#issue-2940838975 (cve.org)
Timeline
- Apr 2, 2025 CVE Published
- Apr 3, 2025 EPSS Score
- Apr 3, 2025 Coalition ESS Score
- Apr 5, 2025 Coalition ESS Score
- Apr 10, 2025 Coalition ESS Score
- Apr 16, 2025 EPSS Score
- Apr 29, 2025 EPSS Score
- May 11, 2025 EPSS Score
- May 24, 2025 EPSS Score
- May 28, 2025 Coalition ESS Score
- Jun 6, 2025 EPSS Score
- Jun 19, 2025 EPSS Score
References
- https://github.com/ARPANET-cybersecurity/vuldb/issues/2 url
- https://github.com/pytorch/pytorch/issues/149821 url
- https://github.com/pytorch/pytorch/issues/149821#issue-2940838975 url
- https://github.com/pytorch/pytorch/issues/149821#issuecomment-2765311086 url
- https://nvd.nist.gov/vuln/detail/CVE-2025-3136 url
- https://vuldb.com/?ctiid.303041 url
- https://vuldb.com/?id.303041 url
- https://vuldb.com/?submit.525252 url