CVE-2025-3136

ADVISORY - nist

Summary

A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0. This issue affects the function torch.cuda.memory.caching_allocator_delete of the file c10/cuda/CUDACachingAllocator.cpp. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.

EPSS Score⁠: 0.00061 (0.191)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-119⁠

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-787⁠

Out-of-bounds Write

Impacted images

Advisories

NIST

CREATED

1 year ago

UPDATED

1 year ago

ADVISORY IDCVE-2025-3136⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-119⁠CWE-787⁠

CVSS SCORE

4.8medium

Debian

CREATED

1 year ago

UPDATED

22 days ago

ADVISORY IDCVE-2025-3136⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

1 year ago

UPDATED

4 months ago

ADVISORY IDCVE-2025-3136⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

PypA

CREATED

1 year ago

UPDATED

16 hours ago

ADVISORY ID

PYSEC-2025-197

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

4.8medium

Bitnami

CREATED

1 year ago

UPDATED

1 year ago

ADVISORY ID

BIT-pytorch-2025-3136

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

4.8medium