PyTorch Vulnerabilities

pip ML Libraries

AI Threat Alert tracks 45 known vulnerabilities in PyTorch, 9 rated critical — an AI/ML ml libraries in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
85
Risk Score
45
Total CVEs
9
Critical
pip
Ecosystem
Jun 19, 2026
Last CVE
11%
Patch Rate
216d
Avg Time to Patch
101,067 stars 28,143 forks 18,265 issues 22,748 dependents Last push Jun 28, 2026
View on GitHub
OpenSSF Scorecard 6.4/10

Known Vulnerabilities (45 total, page 2 of 2)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2025-3001 PyTorch: lstm_cell memory corruption, local code exec 5.3 Mar 31, 2025 MEDIUM CVE-2025-3000 PyTorch: memory corruption in torch.jit.script compiler 5.3 Mar 31, 2025 MEDIUM CVE-2025-2999 PyTorch: memory corruption in RNN sequence unpacking 5.3 Mar 31, 2025 MEDIUM CVE-2025-2998 PyTorch: memory corruption in RNN pad_packed_sequence 5.3 Mar 31, 2025 MEDIUM CVE-2025-2953 PyTorch: DoS via mkldnn_max_pool2d resource leak 5.5 Mar 30, 2025 MEDIUM CVE-2024-6577 TorchServe: unverified S3 bucket exposes benchmark data 6.3 Mar 20, 2025 LOW CVE-2025-2149 PyTorch: improper init in quantized sigmoid skews model output 2.5 Mar 10, 2025 HIGH CVE-2025-2148 PyTorch: memory corruption in JIT profiler callback handler 7.5 Mar 10, 2025 CRITICAL CVE-2024-48063 PyTorch: RCE via RemoteModule deserialization 9.8 Oct 29, 2024 HIGH CVE-2024-35199 TorchServe: default gRPC exposure allows unauth inference 8.2 Jul 19, 2024 CRITICAL CVE-2024-35198 TorchServe: URL bypass enables arbitrary model loading 9.8 Jul 19, 2024 CRITICAL CVE-2024-5452 pytorch-lightning: RCE via deepdiff Delta deserialization 9.8 Jun 6, 2024 MEDIUM CVE-2024-31584 PyTorch: OOB read in mobile model loader leaks memory 5.5 Apr 19, 2024 HIGH CVE-2024-31583 PyTorch: use-after-free in JIT mobile interpreter, RCE 7.8 Apr 17, 2024 MEDIUM CVE-2024-31580 PyTorch: heap buffer overflow causes local DoS 4.0 Apr 17, 2024 MEDIUM CVE-2023-48299 TorchServe: ZipSlip arbitrary file write via model upload 5.3 Nov 21, 2023 CRITICAL CVE-2023-43654 TorchServe: SSRF + RCE via unrestricted model URL loading 9.8 Sep 28, 2023 CRITICAL CVE-2022-45907 PyTorch: RCE via unsafe eval in JIT annotations 9.8 Nov 26, 2022 CRITICAL CVE-2022-0845 pytorch-lightning: code injection enables full RCE 9.8 Mar 5, 2022 HIGH CVE-2021-4118 pytorch-lightning: deserialization RCE via malicious checkpoint 7.8 Dec 23, 2021

Showing 26–45 of 45

Frequently asked questions

What is PyTorch?

PyTorch is an AI/ML ml libraries tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does PyTorch have?

PyTorch has 45 known CVEs, 9 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is PyTorch distributed in?

PyTorch is distributed via the pip ecosystem and categorized as ml libraries.

Where does the PyTorch vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of PyTorch?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor PyTorch in your stack

Get instant alerts when new vulnerabilities affect PyTorch. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring