CVE-2026-24747

by Fred · 27/01/2026

PyTorch is a Python package that provides tensor computation. Prior to version 2.10.0, a vulnerability in PyTorch’s `weights_only` unpickler allows an attacker to craft a malicious checkpoint file (`.pth`) that, when loaded with `torch.load(…, weights_only=True)`, can corrupt memory and potentially lead to arbitrary code execution. Version 2.10.0 fixes the issue.

More information : https://github.com/pytorch/pytorch/163122/commit/954dc5183ee9205cbe79876ad05dd2d9ae752139

CVE-2026-24747

Similar

Recent Posts

Categories

CVE-2026-24747

Share this:

Similar

Recent Posts

Categories

Tags