Denial of Service Vulnerability in PyTorch by Meta
CVE-2025-55551

7.5HIGH

Key Information:

Vendor: Meta
Status: PyTorch
Vendor: CVE Published:; 25 September 2025

What is CVE-2025-55551?

A flaw within the 'torch.linalg.lu' component of PyTorch version 2.8.0 can be exploited by attackers, leading to a Denial of Service (DoS) during specific slice operations. This vulnerability may allow malicious actors to disrupt the functionality of applications utilizing this library, rendering them unresponsive and impacting performance. Users of PyTorch v2.8.0 are advised to stay informed about this issue and take necessary precautions.

References

https://github.com/pytorch/pytorch/issues/151401

https://gist.github.com/shaoyuyoung/0e7d2a586297ae9c8ed14...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 25, 2025
Vulnerability Reserved
Aug 13, 2025

JSON