Jacob Szwejbka - Security Researcher - Exploit Intelligence Platform

CVE-2025-30402 WRITEUP HIGH WRITEUP

ExecuTorch - Heap Buffer Overflow in Method Loading

A heap-buffer-overflow vulnerability in the loading of ExecuTorch methods can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit 93b1a0c15f7eda49b2bc46b5b4c49557b4e9810f

CVSS 8.1

View Code

CVE-2025-54950 WRITEUP CRITICAL WRITEUP

Pypi Executorch < 0.7.0 - Out-of-Bounds Read

An out-of-bounds access vulnerability in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005.

CVSS 9.8

View Code

CVE-2025-54951 WRITEUP CRITICAL WRITEUP

Pypi Executorch < 0.7.0 - Heap Buffer Overflow

A group of related buffer overflow vulnerabilities in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit cea9b23aa8ff78aff92829a466da97461cc7930c.

CVSS 9.8

View Code

CVE-2025-54952 WRITEUP CRITICAL WRITEUP

ExecuTorch <8f062d3f661e20bb19b24b767b9a9a46e8359f2b - Code Injection

An integer overflow vulnerability in the loading of ExecuTorch models can cause smaller-than-expected memory regions to be allocated, potentially resulting in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit 8f062d3f661e20bb19b24b767b9a9a46e8359f2b.

CVSS 9.8

View Code