logo

Database

Out-of-bounds read In org.pytorch:executorch-android

Description

ExecuTorch out-of-bounds access vulnerability An out-of-bounds access vulnerability in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit fb03b6f85596a8f954d97929075335255b6a58d4.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2025-549502. NVD-2025-549503. OSV-2025-549504. GCVE-2025-54950

References

1. https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d0052. https://github.com/pytorch/executorch/commit/fb03b6f85596a8f954d97929075335255b6a58d43. https://www.facebook.com/security/advisories/cve-2025-54950

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.