CVE-2025-67729

Name of the Vulnerable Software and Affected Versions LMDeploy versions prior to 0.11.1

Description LMDeploy is a toolkit used for compressing, deploying, and serving LLMs. A flaw exists where the torch.load() function is called without the weights only=True parameter when loading model checkpoint files. This insecure deserialization allows an attacker to execute arbitrary code on a system by loading a malicious .bin or .pt model file. The torch.load() function is used to load serialized objects, and without the weights only=True parameter, it can deserialize arbitrary Python objects, leading to code execution.

Recommendations LMDeploy versions prior to 0.11.1 are vulnerable and should be updated to version 0.11.1 or later.