Login Sign Up

CVE-2025-46150

5.3 MEDIUM

📋 TL;DR

This CVE describes a vulnerability in PyTorch's torch.compile feature where FractionalMaxPool2d produces inconsistent results. This could lead to incorrect model outputs or training failures in machine learning applications. Users of PyTorch with torch.compile enabled are affected.

💻 Affected Systems

Products:
  • PyTorch
Versions: All versions before 2.7.0
Operating Systems: All operating systems running PyTorch
Default Config Vulnerable: ✅ No
Notes: Only affects systems using torch.compile with FractionalMaxPool2d operations. Standard PyTorch execution without torch.compile is not vulnerable.

📦 What is this software?

Pytorch by Linuxfoundation

View all CVEs affecting Pytorch →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Machine learning models produce incorrect predictions or fail during training, potentially leading to business logic errors, financial miscalculations, or safety-critical failures in deployed AI systems.

🟠

Likely Case

Inconsistent model behavior during training or inference, causing degraded performance, failed training runs, or unreliable predictions in production ML pipelines.

🟢

If Mitigated

With proper input validation and output verification, the impact is limited to potential performance degradation or training failures rather than silent incorrect predictions.

🌐 Internet-Facing: LOW - This is primarily a correctness issue in ML computations rather than a traditional security vulnerability that could be directly exploited over the internet.
🏢 Internal Only: MEDIUM - For organizations relying on PyTorch for critical ML workloads, this could impact model accuracy and reliability in internal systems.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires understanding of PyTorch's compilation pipeline and ability to trigger specific tensor operations. No known active exploitation in the wild.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: PyTorch 2.7.0 and later

Vendor Advisory: https://github.com/pytorch/pytorch/issues/141538

Restart Required: No

Instructions:

1. Update PyTorch using pip: 'pip install torch==2.7.0' or 'pip install --upgrade torch' 2. Verify installation with 'python -c "import torch; print(torch.__version__)"' 3. Ensure version is 2.7.0 or higher

🔧 Temporary Workarounds

Disable torch.compile for affected operations

all

Avoid using torch.compile with FractionalMaxPool2d operations until patched

# Use standard PyTorch execution instead of torch.compile
# Example: Remove @torch.compile decorator or disable compilation

Use alternative pooling operations

all

Replace FractionalMaxPool2d with other pooling layers like MaxPool2d

# Replace: nn.FractionalMaxPool2d(...)
# With: nn.MaxPool2d(...) or other appropriate pooling layers

🧯 If You Can't Patch

  • Implement rigorous output validation for models using FractionalMaxPool2d with torch.compile
  • Add monitoring and alerting for inconsistent model behavior or prediction drift

🔍 How to Verify

Check if Vulnerable:

Check PyTorch version and test FractionalMaxPool2d with torch.compile for inconsistent outputs

Check Version:

python -c "import torch; print(torch.__version__)"

Verify Fix Applied:

After updating to PyTorch 2.7.0+, verify that FractionalMaxPool2d produces consistent results with torch.compile enabled

📡 Detection & Monitoring

Log Indicators:

  • Model training failures
  • Prediction inconsistencies
  • Numerical instability warnings in ML logs

Network Indicators:

  • N/A - This is a local computation issue

SIEM Query:

Search for error messages containing 'FractionalMaxPool2d', 'torch.compile', or PyTorch version strings below 2.7.0 in application logs

📊 Metadata

CVE ID: CVE-2025-46150
CVSS v3 Score: 5.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score: 0.06% exploit probability (19.1th percentile)
Published: September 25, 2025
Last Updated: October 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON