CVE-2025-30405

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ExecuTorch versions prior to commit 0830af8207240df8d7f35b984cdf8bc35d74fa73

Description An integer overflow vulnerability exists in the loading of ExecuTorch models. This can lead to objects being placed outside of their allocated memory, potentially resulting in code execution or other undesirable effects.

Recommendations Update ExecuTorch to a version after commit 0830af8207240df8d7f35b984cdf8bc35d74fa73.

Fix

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

CVE-2025-30405

GHSA-84M3-F99P-CQX5

Affected Products

Executorch

CVE-2025-30405

Weakness Enumeration

Related Identifiers

Affected Products

References · 12