CVE-2025-67729 | InternLM LMDeploy up to 0.11.0 torch.load deserialization

Inserito da Angelo Barbosa | Dic 26, 2025 | CVE

A vulnerability labeled as critical has been found in InternLM LMDeploy up to 0.11.0. This issue affects the function torch.load. Such manipulation leads to deserialization.

This vulnerability is traded as CVE-2025-67729. The attack may be launched remotely. There is no exploit available.

The affected component should be upgraded.

CVE-2025-67729 | InternLM LMDeploy up to 0.11.0 torch.load deserialization

Post correlati

CVE-2024-52485 | Yudiz Solutions WP Menu Image Plugin up to 2.2 on WordPress authorization

CVE-2024-5606 | Quiz and Survey Master Plugin up to 9.0.1 on WordPress qsm_bulk_delete_question_from_database question_id sql injection

CVE-2025-22917 | Audemium ERP up to 0.9.0 list.php type cross site scripting

CVE-2024-28100 | eLabFTW up to 4.x Files cross site scripting