CVE-2025-55554Integer Overflow or Wraparound in Pytorch

CWE-190Integer Overflow or Wraparound6 documents6 sources
Severity
5.3MEDIUMNVD
EPSS
0.1%
top 82.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
12
Linuxfoundation PytorchDebian PytorchMsrc Azl3 Pytorch 2.2.2-10 ON Azure Linux 3.0+9 more
Timeline
PublishedSep 25

Description

pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages12 packages

🔴Vulnerability Details

2
GHSA
GHSA-f9wh-qr6g-v2h4: pytorch v22025-09-25
OSV
CVE-2025-55554: pytorch v22025-09-25

📋Vendor Advisories

3
Red Hat
torch: PyTorch integer overflow2025-09-25
Microsoft
pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().2025-09-09
Debian
CVE-2025-55554: pytorch - pytorch v2.8.0 was discovered to contain an integer overflow in the component to...2025