← Back to home
wid-sec-w-2026-0813  ·  Published 2026-03-22  ·  View on BSI CERT-Bund ↗

PyTorch: Vulnerability allows Code execution

CVSS 4.8 MEDIUM

Risk Summary

A vulnerability was identified in PyTorch 2.10.0. The affected element is an unknown function of the component pt2 Loading Handler. The manipulation leads to deserialization. The attack can only be performed from a local environment. The exploit is publicly available and might be used. The project was informed of the problem early through a pull request but has not reacted yet.

CVEs (1)

Affected Vendors

Open Source

Affected Products (1)

Open Source · PyTorch 2.10.0

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more