A newly disclosed critical vulnerability (CVE-2025-32434) in PyTorch, the widely used open-source machine learning framework, allows attackers to execute arbitrary code on systems loading AI models—even when safety measures like weights_only=True are enabled.
The flaw impacts all PyTorch versions ≤2.5.1 and has been patched in version 2.6.0, released earlier this week.
https://chatgpt.com/c/67ed2bd7-7d60-800 ... e03a0143f3