org.pytorch:executorch-android (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package org.pytorch:executorch-android, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (6)
CVE-2025-30404 — CVSS 9.8 (critical): An integer overflow vulnerability in the loading of ExecuTorch models can cause overlapping allocations, potentially resulting in code…
CVE-2025-30405 — CVSS 9.8 (critical): An integer overflow vulnerability in the loading of ExecuTorch models can cause objects to be placed outside their allocated memory area…
CVE-2025-54949 — CVSS 9.8 (critical): A heap buffer overflow vulnerability in the loading of ExecuTorch models can potentially result in code execution or other undesirable…
CVE-2025-54950 — CVSS 9.8 (critical): An out-of-bounds access vulnerability in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code…
CVE-2025-54951 — CVSS 9.8 (critical): A group of related buffer overflow vulnerabilities in the loading of ExecuTorch models can cause the runtime to crash and potentially…
CVE-2025-30402 — CVSS 8.1 (high): A heap-buffer-overflow vulnerability in the loading of ExecuTorch methods can cause the runtime to crash and potentially result in code…