8.1CVSSHIGH
Description
A heap-buffer-overflow vulnerability in the loading of ExecuTorch methods can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit 93b1a0c15f7eda49b2bc46b5b4c49557b4e9810f
CVSS Vector Breakdown
Exploitability
AV:NAttack VectorNetwork
AC:LAttack ComplexityLow
PR:NPrivileges RequiredNone
UI:RUser InteractionRequired
Scope
S:UScopeUnchanged
Impact
C:HConfidentialityHigh
I:NIntegrityNone
A:HAvailabilityHigh
Affected Products
swifturlOSS Librariesaka swift-nio-http2, github.com/vapor/vapor, github.com/pytorch/executorch, swift-nio-http2, github.com/apple/swift-nio-http2
Exploitability
Official Patch Available
References
https://github.com/pytorch/executorch/commit/93b1a0c15f7eda49b2bc46b5b4c49557b4e9810f
github.com
https://www.facebook.com/security/advisories/cve-2025-30402
facebook.com
https://nvd.nist.gov/vuln/detail/CVE-2025-30402
nvd.nist.gov
and 1 more references View all →
Timeline
Published
Jul 11, 2025
Last Updated
Jul 15, 2025
Unlock Complete Vulnerability Intelligence
Get the full picture for CVE-2025-30402 and every CVE in our database. Create a free account — no credit card required.
Create Free AccountPlain-language analysis
Impact assessment and exploitation scenario in plain English
Attack graph visualization
Interactive attack path and kill chain mapping
Exploit details & PoC links
ExploitDB, Metasploit, GitHub PoCs with direct links
Nuclei scanner templates
Ready-to-use vulnerability scanner templates
Full remediation guide
Patch instructions, workarounds, and compliance impact
Interactive AI chat
Ask questions about this vulnerability in natural language
Related vulnerabilities
Semantically similar CVEs and attack patterns
REST API & MCP access
Integrate vulnerability data into your workflows