{"id":"BIT-pytorch-2025-55557","details":"A Name Error occurs in pytorch v2.7.0 when a PyTorch model consists of torch.cummin and is compiled by Inductor, leading to a Denial of Service (DoS).","aliases":["CVE-2025-55557"],"modified":"2025-10-06T07:14:31.969597Z","published":"2025-10-05T23:47:57.792Z","database_specific":{"severity":"High","cpes":["cpe:2.3:a:linuxfoundation:pytorch:*:*:*:*:*:python:*:*"]},"references":[{"type":"WEB","url":"https://gist.github.com/shaoyuyoung/0e7d2a586297ae9c8ed14d8706749efc"},{"type":"WEB","url":"https://github.com/pytorch/pytorch/issues/151738"},{"type":"WEB","url":"https://github.com/pytorch/pytorch/pull/151931"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-55557"}],"affected":[{"package":{"name":"pytorch","ecosystem":"Bitnami","purl":"pkg:bitnami/pytorch"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"2.7.1"}]}],"database_specific":{"source":"https://github.com/bitnami/vulndb/tree/main/data/pytorch/BIT-pytorch-2025-55557.json"},"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}],"schema_version":"1.7.3"}