CVE-2026-4538 | PyTorch 2.10.0 pt2 Loading deserialization (ID 176791)

Inserito da Angelo Barbosa | Mar 21, 2026 | CVE

A vulnerability, which was classified as critical, has been found in PyTorch 2.10.0. The affected element is an unknown function of the component pt2 Loading Handler. The manipulation leads to deserialization.

This vulnerability is referenced as CVE-2026-4538. The attack can only be performed from a local environment. Furthermore, an exploit is available.

The project was informed of the problem early through a pull request but has not reacted yet.

CVE-2026-4538 | PyTorch 2.10.0 pt2 Loading deserialization (ID 176791)

Post correlati

CVE-2025-5010 | moonlightL hexo-boot 4.3.0 Blog Backend /admin/home/index.html Description cross site scripting

CVE-2024-8006 | tcpdump libpcap up to 1.9.x/1.10.4 pcap_findalldevs_ex null pointer dereference

CVE-2024-5659 | Rockwell Automation ControlLogix/GuardLogix/CompactLogix control flow (icsa-24-163-01)

CVE-2024-10477 | LinZhaoguan pb-cms up to 2.0.1 Permission Management Page /admin#permissions cross site scripting (IAYIB9)