CVE-2025-3136

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://github.com/ARPANET-cybersecurity/vuldb/issues/2", "name": "https://github.com/ARPANET-cybersecurity/vuldb/issues/2", "tags": ["Not Applicable"], "refsource": ""}, {"url": "https://github.com/pytorch/pytorch/issues/149821", "name": "https://github.com/pytorch/pytorch/issues/149821", "tags": ["Exploit", "Issue Tracking", "Vendor Advisory"], "refsource": ""}, {"url": "https://github.com/pytorch/pytorch/issues/149821#issue-2940838975", "name": "https://github.com/pytorch/pytorch/issues/149821#issue-2940838975", "tags": ["Exploit", "Issue Tracking", "Vendor Advisory"], "refsource": ""}, {"url": "https://github.com/pytorch/pytorch/issues/149821#issuecomment-2765311086", "name": "https://github.com/pytorch/pytorch/issues/149821#issuecomment-2765311086", "tags": ["Exploit", "Issue Tracking", "Vendor Advisory"], "refsource": ""}, {"url": "https://vuldb.com/?ctiid.303041", "name": "VDB-303041 | CTI Indicators (IOB, IOC, IOA)", "tags": ["Permissions Required", "VDB Entry"], "refsource": ""}, {"url": "https://vuldb.com/?id.303041", "name": "VDB-303041 | PyTorch CUDACachingAllocator.cpp torch.cuda.memory.caching_allocator_delete memory corruption", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "https://vuldb.com/?submit.525252", "name": "Submit #525252 | pytorch pytorch (in torch.cuda.memory.caching_allocator_delete) torch 2.6.0 invalid memory access", "tags": ["Third Party Advisory", "VDB Entry", "Exploit"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0. This issue affects the function torch.cuda.memory.caching_allocator_delete of the file c10/cuda/CUDACachingAllocator.cpp. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed to the public and may be used."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-787"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2025-3136", "ASSIGNER": "cna@vuldb.com"}}, "impact": {}, "publishedDate": "2025-04-03T04:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:linuxfoundation:pytorch:2.6.0:-:*:*:*:python:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-05-28T15:59Z"}