Pytorch Torchserve vulnerabilities
5 known vulnerabilities affecting pytorch/torchserve.
Total CVEs
5
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2023-43654P1CRITICALCVSS 9.8ExploitedPoC≥ 0.1.0, < 0.8.22023-09-28
CVE-2023-43654 [CRITICAL] CWE-918 CVE-2023-43654: TorchServe is a tool for serving and scaling PyTorch models in production. TorchServe default config
TorchServe is a tool for serving and scaling PyTorch models in production. TorchServe default configuration lacks proper input validation, enabling third parties to invoke remote HTTP download requests and write files to the disk. This issue could be taken advantage of to compromise the integrity of the system and sensitive data. This issue is pre
ghsanvdosv
CVE-2024-35198P3CRITICALCVSS 9.8≥ 0.4.2, < 0.11.02024-07-19
CVE-2024-35198 [CRITICAL] CWE-706 CVE-2024-35198: TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production.
TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production. TorchServe 's check on allowed_urls configuration can be by-passed if the URL contains characters such as ".." but it does not prevent the model from being downloaded into the model store. Once a file is downloaded, it can be referenced without provi
ghsanvdosv
CVE-2024-35199P3HIGHCVSS 8.2≥ 0.3.0, < 0.11.02024-07-19
CVE-2024-35199 [HIGH] CWE-668 CVE-2024-35199: TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production.
TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production. In affected versions the two gRPC ports 7070 and 7071, are not bound to [localhost](http://localhost/) by default, so when TorchServe is launched, these two interfaces are bound to all interfaces. Customers using PyTorch inference Deep Learning Container
ghsanvdosv
CVE-2024-6577P4MEDIUM≥ 0, ≤ 0.11.02025-03-20
CVE-2024-6577 [MEDIUM] TorchServe script references S3 bucket without ensuring ownership or confirming accessibility
TorchServe script references S3 bucket without ensuring ownership or confirming accessibility
In the latest version of pytorch/serve, the script 'upload_results_to_s3.sh' references the S3 bucket 'benchmarkai-metrics-prod' without ensuring its ownership or confirming its accessibility. This could lead to potential security vulnerabilities or unauthorized access to the bucket if i
ghsaosv
CVE-2023-48299P4MEDIUMCVSS 5.3≥ 0.1.0, < 0.9.02023-11-21
CVE-2023-48299 [MEDIUM] CWE-22 CVE-2023-48299: TorchServe is a tool for serving and scaling PyTorch models in production. Starting in version 0.1.0
TorchServe is a tool for serving and scaling PyTorch models in production. Starting in version 0.1.0 and prior to version 0.9.0, using the model/workflow management API, there is a chance of uploading potentially harmful archives that contain files that are extracted to any location on the filesystem that is within the process permissions. Leveraging
ghsanvdosv