PyTorch A.I CyberSecurity Scoring
PyTorch
Company Information
Website:http://www.pytorch.org
Employees number:65
Number of followers:303,903
NAICS:5417
Industry Type:Research Services
Homepage:pytorch.org
PyTorch Risk Score (AI oriented)
Between 750 and 799
PyTorchResearch Services
Updated:
04/04/2026
04/04/2026
750/1000
Fair
Baa
PyTorch Global Score (TPRM)
xxxx
PyTorchResearch Services
Score locked

PyTorchFair
Current Score
750Baa (FAIR)
01000
2 incidents
-5 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
750
JUNE 2026
750
MAY 2026
750
APRIL 2026
750
MARCH 2026
749
FEBRUARY 2026
749
JANUARY 2026
754
Vulnerability
01 Jan 2026 • PyTorch
PyTorch: PyTorch Vulnerability Allows Memory Corruption Leading to Remote Code Execution
Critical PyTorch Vulnerability (CVE-2026-24747) Enables Arbitrary Code Execution via Malicious Model Files
749
CRITICAL-5
PYT1769705276
Critical PyTorch Vulnerability (CVE-2026-24747) Enables Arbitrary Code Execution via Malicious Model Files
A severe vulnerability in PyTorch’s checkpoint loading mechanism has been disclosed, allowing attackers to execute arbitrary code through specially crafted model files. Tracked as CVE-2026-24747 with a CVSS score of 9.8, the flaw affects PyTorch versions 2.9.1 and earlier and poses a high risk to confidentiality, integrity, and availability.
The issue lies in PyTorch’s `weights_only` unpickler, which was designed to safely load model checkpoints by restricting pickle operations. However, inadequate validation of pickle opcodes and storage metadata enables attackers to bypass these protections. By embedding malicious payloads in checkpoint files (`.pth`), adversaries can trigger memory corruption exploiting SETITEM/SETITEMS opcodes on non-dictionary types or manipulating storage element counts to write beyond intended memory boundaries. When a victim loads a compromised file using `torch.load()` with `weights_only=True`, the attack executes with the user’s privileges, granting full control over the host system.
Exploitation requires user interaction (loading the file) but no privilege escalation, and the attack vector is classified as network-based with low complexity, making it accessible via distributed malicious models or compromised repositories. PyTorch has patched the vulnerability in version 2.10.0, which enforces stricter validation of pickle operations and metadata. Organizations are advised to upgrade immediately, as no workarounds exist beyond avoiding untrusted checkpoint files.
The flaw underscores the risks of unpickling unvalidated model files in machine learning workflows, particularly in production environments. Security teams should audit PyTorch deployments, verify model file integrity, and implement network-level controls to mitigate exposure.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
DECEMBER 2025
753
NOVEMBER 2025
754
OCTOBER 2025
753
SEPTEMBER 2025
753
AUGUST 2025
753
APRIL 2025
754
Vulnerability
21 Apr 2025 • PyTorch
PyTorch
Critical Vulnerability in PyTorch CVE-2025-32434
752
CRITICAL-2
PYT500042125
A critical vulnerability in PyTorch was identified as CVE-2025-32434 that allows attackers to execute malicious code remotely. The security flaw was found in the torch.load function when used with the weights_only=True parameter, which was formerly considered a safe approach for loading models from untrusted sources. This undermines PyTorch's security recommendations, as many organizations and developers had deployed this parameter specifically for security measures. The vulnerability allows hackers to create harmful model files that, upon loading, can run arbitrary code on the victim's system leading to potential total system compromise. This becomes treacherously dangerous for machine learning pipelines that download and load models from external sources or collaborative environments automatically.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for PyTorch ??
What was PyTorch's A.I Rankiteo Cyber Score in June 2026 ??
What was PyTorch's A.I Rankiteo Cyber Score in May 2026 ??
What was PyTorch's A.I Rankiteo Cyber Score in April 2026 ??
What was PyTorch's A.I Rankiteo Cyber Score in March 2026 ??
What was PyTorch's A.I Rankiteo Cyber Score in February 2026 ??
What was PyTorch's A.I Rankiteo Cyber Score in January 2026 ??
What was PyTorch's A.I Rankiteo Cyber Score in December 2025 ??
What was PyTorch's A.I Rankiteo Cyber Score in November 2025 ??
What was PyTorch's A.I Rankiteo Cyber Score in October 2025 ??
What was PyTorch's A.I Rankiteo Cyber Score in September 2025 ??
What was PyTorch's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on PyTorch's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with PyTorch ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view PyTorch's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?