CVE-2025-46567: Insecure Torch Load Weights
The `torch.load()` function is called without explicitly setting `weights_only=True`. By default in many PyTorch versions, this defaults to using the insecure `pickle` module. Attempting to load malformed or malicious PyTorch checkpoint files (e.g., .bin, .pt) without this restriction enables insecure deserialization and can lead to System Compromise via Arb
Pythongreprules fetch cve-2025-46567-insecure-torch-load-weights --engine opengrepDescription
The `torch.load()` function is called without explicitly setting `weights_only=True`. By default in many PyTorch versions, this defaults to using the insecure `pickle` module. Attempting to load malformed or malicious PyTorch checkpoint files (e.g., .bin, .pt) without this restriction enables insecure deserialization and can lead to System Compromise via Arb
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0