CVE-2025-54949

Summary

A heap buffer overflow vulnerability in the loading of ExecuTorch models can potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit ede82493dae6d2d43f8c424e7be4721abe5242be

Affected Software

VendorProductVersion RangeStatus
Meta Platforms, IncExecuTorch0 < https://github.com/pytorch/executorch/commit/ede82493dae6d2d43f8c424e7be4721abe5242beaffected

Weaknesses

  • Heap-based Buffer Overflow (CWE-122)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References