ExecuTorch Integer Overflow Vulnerability Leading to Memory Allocation Issues and Potential Code Execution

Vulnerability

A vulnerability allowing integer overflow in the loading of ExecuTorch models has been identified. This overflow can cause memory regions to be allocated in smaller sizes than expected, which may lead to code execution or other negative effects. The issue affects ExecuTorch versions prior to commit 8f062d3f661e20bb19b24b767b9a9a46e8359f2b.

Impact

Exploitation of this vulnerability could result in arbitrary code execution or other undesirable effects due to improper memory allocation.

Added: Aug 8, 2025, 12:17 AM

Updated: Aug 8, 2025, 12:17 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

8.1

remediation

7.7

relevance

0.3

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

8.1

remediation

7.7

relevance

0.3

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ExecuTorch Integer Overflow Vulnerability Leading to Memory Allocation Issues and Potential Code Execution

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating