CVE-2025-54951
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-07
Last updated on: 2025-08-12
Assigner: Facebook, Inc.
Description
Description
A group of related buffer overflow vulnerabilities in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit cea9b23aa8ff78aff92829a466da97461cc7930c.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| meta_platforms | executorch | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-122 | A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc(). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability consists of a group of related buffer overflow issues in the loading process of ExecuTorch models. These buffer overflows can cause the runtime environment to crash and may allow an attacker to execute arbitrary code or cause other harmful effects.
How can this vulnerability impact me? :
The vulnerability can cause the ExecuTorch runtime to crash, disrupting normal operations. Additionally, it may allow an attacker to execute arbitrary code, potentially leading to unauthorized actions or compromise of the system running ExecuTorch.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70