**Name of the Vulnerable Software and Affected Versions:**

PyTorch versions prior to 2.6.0

**Description:**

PyTorch, a Python package for tensor computation and deep neural networks, is affected by a Remote Command Execution (RCE) vulnerability. This vulnerability exists when loading a model using the `torch.load()` function with the `weights only=True` parameter. Exploitation of this vulnerability allows attackers to execute arbitrary code on the system.

**Recommendations:**

PyTorch versions prior to 2.6.0 are vulnerable and should be updated to version 2.6.0 or later to address this issue. As an interim measure, avoid using `torch.load()` with the `weights only=True` parameter and implement additional verification of model files.