Description
A heap-buffer-overflow vulnerability in the loading of ExecuTorch methods can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit 93b1a0c15f7eda49b2bc46b5b4c49557b4e9810f
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://www.facebook.com/security/advisories/cve-2025-30402
Patch x_refsource_confirm
https://github.com/pytorch/executorch/commit/93b1a0c15f7eda49b2bc46b5b4c49557b4e9810f
Scores
CVSS v3
8.1
EPSS
0.0015
EPSS Percentile
35.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
Status
published
Products (4)
Meta Platforms, Inc/ExecuTorch
< https://github.com/pytorch/executorch/commit/93b1a0c15f7eda49b2bc46b5b4c49557b4e9810f
org.pytorch/executorch-android
0 - 0.7.0-rc1Maven
pypi/executorch
0 - 0.7.0PyPI
SwiftURL/executorch
0 - 0.7.0-rc1SwiftURL
Published
Jul 11, 2025
Tracked Since
Feb 18, 2026