CVE-2025-54949CRITICAL 9.8EPSS p45.8%

CVE-2025-54949CVE-2025-54949

Description

A heap buffer overflow vulnerability in the loading of ExecuTorch models can potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit ede82493dae6d2d43f8c424e7be4721abe5242be

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.64% probability of exploitation · percentile 45.8% · 2026-06-19T12:03:05Z
Published2025-08-07
Last modified2026-04-15

Underlying weaknesses· 1

CWE-122

References

  1. https://github.com/pytorch/executorch/commit/ede82493dae6d2d43f8c424e7be4721abe5242be
  2. https://www.facebook.com/security/advisories/cve-2025-54949

1

TypeTargetConfidenceTier
WeaknessHeap-based Buffer Overflowcwe-1220%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-54951
CVE
CVE-2025-54952
CVE
CVE-2025-54950
CVE
CVE-2025-30402
CVE
CVE-2025-30405
CVE
CVE-2025-30404
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.