CVE-2024-5452 – This vulnerability allows remote attackers to e... (How to Fix)

Q: What is the severity of CVE-2024-5452?

CVE-2024-5452 has a CVSS score of 9.8 (CRITICAL). This vulnerability allows remote attackers to execute arbitrary code on self-hosted PyTorch Lightning applications by exploiting improper deserialization in the deepdiff library. Attackers can bypass attribute modification restrictions to write arbitrary attributes and achieve full remote code execution. All self-hosted PyTorch Lightning applications with the default configuration are affected.

📋 TL;DR

This vulnerability allows remote attackers to execute arbitrary code on self-hosted PyTorch Lightning applications by exploiting improper deserialization in the deepdiff library. Attackers can bypass attribute modification restrictions to write arbitrary attributes and achieve full remote code execution. All self-hosted PyTorch Lightning applications with the default configuration are affected.

💻 Affected Systems

Products:

lightning-ai/pytorch-lightning

Versions: Version 2.2.1 specifically (and potentially earlier versions with similar deepdiff integration)

Operating Systems: All operating systems running PyTorch Lightning

Default Config Vulnerable: ⚠️ Yes

Notes: The delta endpoint is enabled by default in self-hosted configurations. Cloud-hosted instances may have different configurations.

📦 What is this software?

Pytorch Lightning by Lightningai

View all CVEs affecting Pytorch Lightning →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with attacker gaining full control over the application server, allowing data theft, lateral movement, and persistent access.

🟠

Likely Case

Remote code execution leading to data exfiltration, cryptocurrency mining, or ransomware deployment on vulnerable servers.

🟢

If Mitigated

Limited impact with proper network segmentation and access controls, potentially only affecting the application container.

🌐 Internet-Facing: HIGH - The vulnerable endpoint is enabled by default and accessible remotely, making internet-facing instances immediate targets.

🏢 Internal Only: HIGH - Even internal applications can be exploited by authenticated users or through other attack vectors.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit details are publicly available through the huntr.com bounty disclosure. The vulnerability requires sending a specially crafted serialized delta payload to the vulnerable endpoint.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Fixed in commit 330af381de88cff17515418a341cbc1f9f127f9a and subsequent releases

Vendor Advisory: https://github.com/lightning-ai/pytorch-lightning/commit/330af381de88cff17515418a341cbc1f9f127f9a

Restart Required: Yes

Instructions:

1. Update PyTorch Lightning to the latest version. 2. Verify the deepdiff library is updated or properly restricted. 3. Restart the application service. 4. Test that the delta endpoint no longer accepts malicious payloads.

🔧 Temporary Workarounds

Disable Delta Endpoint

all

Disable the vulnerable delta endpoint if not required for functionality

Configure application to disable the delta processing feature or restrict access to the endpoint

Network Access Control

all

Restrict network access to the PyTorch Lightning application

Use firewall rules to limit access to trusted IPs only

🧯 If You Can't Patch

Implement strict input validation and sanitization for all deserialization operations
Deploy network segmentation and application-level firewalls to monitor and block suspicious delta payloads

🔍 How to Verify

Check if Vulnerable:

Check if your PyTorch Lightning version is 2.2.1 or has the vulnerable deepdiff integration. Test by attempting to send a crafted delta payload to the endpoint.

Check Version:

pip show pytorch-lightning | grep Version

Verify Fix Applied:

Verify the application is using a patched version and test that malicious delta payloads are rejected or properly sanitized.

📡 Detection & Monitoring

Log Indicators:

Unusual delta processing requests
Errors related to deepdiff deserialization
Unexpected attribute modification attempts

Network Indicators:

Suspicious serialized data payloads to the delta endpoint
Unusual outbound connections from the application server

SIEM Query:

source="application.logs" AND ("deepdiff.Delta" OR "dunder" OR "attribute write")

📊 Metadata

CVE ID: CVE-2024-5452

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-915

Published: June 6, 2024

Last Updated: October 15, 2025

🔗 References

https://github.com/lightning-ai/pytorch-lightning/commit/330af381de88cff17515418a341cbc1f9f127f9a
https://huntr.com/bounties/486add92-275e-4a7b-92f9-42d84bc759da Exploit,Third Party Advisory
https://huntr.com/bounties/486add92-275e-4a7b-92f9-42d84bc759da Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-5452, you might also want to check these: