Unexpected Behavior in PyTorch v2.8.0 Affecting Torch Components
CVE-2025-55552

5.3MEDIUM

Key Information:

Vendor: PyTorch
Status: PyTorch
Vendor: CVE Published:; 25 September 2025

What is CVE-2025-55552?

A significant issue has been identified in PyTorch v2.8.0, where an unexpected behavior occurs when using the torch.rot90 and torch.randn_like components in conjunction. This can lead to erroneous output results, thereby impacting the reliability of models that rely on these functions. Developers are encouraged to review their usage of these components to mitigate potential issues in their applications.

References

https://github.com/pytorch/pytorch/issues/147847

https://gist.github.com/shaoyuyoung/0e7d2a586297ae9c8ed14...

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 25, 2025
Vulnerability Reserved
Aug 13, 2025

JSON