CVE-2025-4287 | PyTorch 2.6.0+cu124 torch/cuda/nccl.py torch.cuda.nccl.reduce denial of service (Issue 150836)

Inserito da Angelo Barbosa | Mag 5, 2025 | CVE

A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function torch.cuda.nccl.reduce of the file torch/cuda/nccl.py. The manipulation leads to denial of service.

This vulnerability is handled as CVE-2025-4287. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-4287 | PyTorch 2.6.0+cu124 torch/cuda/nccl.py torch.cuda.nccl.reduce denial of service (Issue 150836)

Post correlati

CVE-2024-38830 | VMware Aria Operations up to 8.18.1 Local Privilege Escalation (VMSA-2024-0022)

CVE-2024-11613 | File Upload Plugin up to 4.24.15 on WordPress path traversal

CVE-2024-44087 | Siemens Automation License Manager up to 5.x/6.2 Upd2 TCP Port 4410 integer overflow (ssa-103653)

CVE-2024-23512 | ProductX Plugin up to 3.1.4 on WordPress wopb_wishlist/wopb_compare code injection