WID-SEC-W-2025-0857 — Vulnetix

WID-SEC-W-2025-0857 PUBLISHED

PyTorch ist eine Tensor-Bibliothek für Deep Learning mit GPUs und CPUs.

Affected Products

Vendor	Product	Versions
	Open Source PyTorch <2.6.0
	Open Source PyTorch <=2.5.1
	Open Source PyTorch 2.6.0

Exploit Intelligence

An automated, high-precision zero-shot evaluation pipeline for OpenAI's CLIP model on CIFAR-10. Features 88.80% accuracy, Safetensors security mitigation (CVE-2025-32434), and AI Native (Trae) workflow. (github-poc-repo)
A script for exploiting a vulnerability in PyTorch with subsequent RCE in library versions < 2.6.0 (github-poc-repo)
An automated, high-precision zero-shot evaluation pipeline for OpenAI's CLIP model on CIFAR-10. Features 88.80% accuracy, Safetensors security mitigation (CVE-2025-32434), and AI Native (Trae) workflow. (github-poc)
A script for exploiting a vulnerability in PyTorch with subsequent RCE in library versions < 2.6.0 (github-poc)
cyhe50/cve-2025-32434-poc (github-poc)
https://nvd.nist.gov/vuln/detail/CVE-2025-32434 (circl)
https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0857.json (circl)
https://github.com/advisories/GHSA-53q9-r3pm-6pq6 (circl)
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0857 (circl)
convert-bert-to-gguf.py (github-poc)

…and 5 more exploits

Timeline

Apr 21, 2025 CVE Published

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›