CVE-2025-55560 — Vulnetix

CVE-2025-55560 PUBLISHED

An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.

EPSS 0.16% · 36.5th percentile

Risk Scores

EPSS Score

0.16%

36.5th percentile

Affected Products

Vendor	Product	Versions
Bitnami	pytorch	0
Bitnami	pytorch	0

Timeline

Sep 25, 2025 CVE Published
Sep 26, 2025 EPSS Score
Sep 26, 2025 CVE Updated
Oct 3, 2025 EPSS Score
Oct 4, 2025 Coalition ESS Score
Oct 6, 2025 Coalition ESS Score
Oct 9, 2025 EPSS Score
Oct 15, 2025 Coalition ESS Score
Oct 16, 2025 EPSS Score
Oct 16, 2025 Coalition ESS Score
Oct 23, 2025 EPSS Score
Oct 28, 2025 Coalition ESS Score

References

https://gist.github.com/shaoyuyoung/0e7d2a586297ae9c8ed14d8706749efc url
https://github.com/pytorch/pytorch/issues/151522 url
https://github.com/pytorch/pytorch/pull/151897 url
https://nvd.nist.gov/vuln/detail/CVE-2025-55560 url

Open in Interactive Console →