{"id":"CVE-2025-54950","details":"An out-of-bounds access vulnerability in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005.","aliases":["GHSA-f9hx-c6jf-3qxm"],"modified":"2026-05-28T07:08:03.567683Z","published":"2025-08-07T23:03:03.775Z","database_specific":{"unresolved_ranges":[{"source":"AFFECTED_FIELD","extracted_events":[{"fixed":"https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005"}]}],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/54xxx/CVE-2025-54950.json","cna_assigner":"facebook"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/54xxx/CVE-2025-54950.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-54950"},{"type":"ADVISORY","url":"https://www.facebook.com/security/advisories/cve-2025-54950"},{"type":"FIX","url":"https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/pytorch/executorch","events":[{"introduced":"0"},{"fixed":"b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005"}],"database_specific":{"source":"REFERENCES"}}],"versions":["ciflow/binaries/sdym","ciflow/binaries/all/sdym","v0.2.0-rc1","v0.1.0-rc1","stable-2023-09-19","stable-2023-09-12","stable-2023-08-29","stable-2023-08-15","stable-2023-08-01"],"database_specific":{"vanir_signatures":[{"digest":{"line_hashes":["326465349509242312834169282156499577562","164357738209369751080480437010002092766","81493432285667883152830667546985738772","160691839931225934792555876625304055234"],"threshold":0.9},"signature_version":"v1","id":"CVE-2025-54950-05e4f8f9","deprecated":false,"signature_type":"Line","source":"https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005","target":{"file":"kernels/prim_ops/et_view.cpp"}},{"digest":{"line_hashes":["39851057811436966072010129692112749102","135312642588034309951978792570092722855","56770058623897263129313012788672758324","294560156706441693341449598487671781215","297385507356811584542617199641521980488","276862131201766602428160866219078401823","161039086822549214109568373847560284711","300185001544029111847372953534322770699","195637362200559653402555660621383089076","86354108650624472049322568650589289321","87176516309013261109410135048646482211","3661279052746090111608007098913138898","146386517920907554222515806183714438945","43293330762898833859357889662186010203","235795133072198198133752245596100079122","176747081721754181688430351079555980409","153008176269159347812651515042054699268","209168507230130376592008982988279176228","225378953229143964222522639305991597286","176747081721754181688430351079555980409","153008176269159347812651515042054699268","293679531462688175109340341476866961494","5276925963012315653794208889450260191","20718468298176695598938268647320089631","294560156706441693341449598487671781215","68802482778790489811991928371254710047","110139972382723136366646230436230850255","20718468298176695598938268647320089631","294560156706441693341449598487671781215","277984877840968708437503095670434135002","163916728090336437347472242358992615250","132613280734011163455250139833384352027","139117020351628177800119506058251094475","101239941902899586239392759535809635986","36670151765981760441297579162184170890","20718468298176695598938268647320089631","294560156706441693341449598487671781215","186339883855932721257621327998138903288","269515389547208248801255611327239321798","20718468298176695598938268647320089631","294560156706441693341449598487671781215","233276593725689413625713433751710441706","122869172690282221632561539479489415682","196385665893440218231914204027951606175","275184296514091878508628402725197048457","184994102963051741026764693101352762044","325978875864041368111078701656763646569","196385665893440218231914204027951606175","275184296514091878508628402725197048457","236890246496229890184487897353452156652","14032334558182097239932737261118821146","20718468298176695598938268647320089631","294560156706441693341449598487671781215","122554171463241956577986722989426205712","264346416464162332247708276895156019733","20718468298176695598938268647320089631","294560156706441693341449598487671781215","104411251071082413904677394348626686823","106248510715720677819199125394078650873","20718468298176695598938268647320089631","294560156706441693341449598487671781215","140713981152548589063514433583378813385","286779531505542302091757282649288270763","196385665893440218231914204027951606175","151265337907310779725578438432042929842","91943591626715475741006932951048489858","100733871484876313285921147353051987150","196385665893440218231914204027951606175","151265337907310779725578438432042929842","106949764946625020619431964162673019627","227204998655788202227054477138124698820","196385665893440218231914204027951606175","151265337907310779725578438432042929842"],"threshold":0.9},"signature_version":"v1","id":"CVE-2025-54950-404395f2","deprecated":false,"signature_type":"Line","source":"https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005","target":{"file":"kernels/prim_ops/register_prim_ops.cpp"}},{"digest":{"function_hash":"47680591015282104881194618477332443059","length":1396},"signature_version":"v1","id":"CVE-2025-54950-8c8c0704","deprecated":false,"signature_type":"Function","source":"https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005","target":{"file":"kernels/prim_ops/et_copy_index.cpp","function":"et_copy_index"}},{"digest":{"function_hash":"62459156612467811678425074441288340670","length":1050},"signature_version":"v1","id":"CVE-2025-54950-c6dc0271","deprecated":false,"signature_type":"Function","source":"https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005","target":{"file":"kernels/prim_ops/et_view.cpp","function":"et_view"}},{"digest":{"function_hash":"194968640956614372519394483279910318555","length":1149},"signature_version":"v1","id":"CVE-2025-54950-c8bba637","deprecated":false,"signature_type":"Function","source":"https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005","target":{"file":"kernels/prim_ops/test/prim_ops_test.cpp","function":"TEST_F"}},{"digest":{"line_hashes":["125042836350361266297996440478641254078","221629051249646166305526782058552584478","165159864991547274507502978830269727268","245294520524079277424226034027828358445","32419647932749844780243612708584436057","288049952711179629359951200759837141631","168924585600986965497388247244337017678","90016799438480100727865596248525515437","108587633537507210242609878158511307392"],"threshold":0.9},"signature_version":"v1","id":"CVE-2025-54950-de023f54","deprecated":false,"signature_type":"Line","source":"https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005","target":{"file":"kernels/prim_ops/test/prim_ops_test.cpp"}},{"digest":{"line_hashes":["40418001736295426961251585404345780220","14599108858816774842938040934764292761","75570478247468365923904946136155417990","319765874879683783230985501171608690798"],"threshold":0.9},"signature_version":"v1","id":"CVE-2025-54950-df593d04","deprecated":false,"signature_type":"Line","source":"https://github.com/pytorch/executorch/commit/b6b7a16df5e7852d976d8c34c8a7e9a1b6f7d005","target":{"file":"kernels/prim_ops/et_copy_index.cpp"}}],"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-54950.json","vanir_signatures_modified":"2026-05-28T07:08:03Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}