Home > Vulnerability Database > CVE-2025-50461

Mend.io Vulnerability Database

CVE-2025-50461

Good to know:

Date: August 18, 2025

A deserialization vulnerability exists in Volcengine's verl 3.0.0, specifically in the scripts/model_merger.py script when using the "fsdp" backend. The script calls torch.load() with weights_only=False on user-supplied .pt files, allowing attackers to execute arbitrary code if a maliciously crafted model file is loaded. An attacker can exploit this by convincing a victim to download and place a malicious model file in a local directory with a specific filename pattern. This vulnerability may lead to arbitrary code execution with the privileges of the user running the script.

Severity Score

6.5

Related Resources (7)

Url: https://github.com/Anchor0221/CVE-2025-50461

Url: https://github.com/volcengine/verl

Url: https://github.com/volcengine/verl/blob/main/scripts/model_merger.py#L152

Url: https://pytorch.org/docs/stable/generated/torch.load.html

Url: https://github.com/pytorch/pytorch/blob/main/SECURITY.md#loading-untrusted-data

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-50461

Url: https://www.mend.io/vulnerability-database/CVE-2025-50461

Severity Score

6.5

Weakness Type (CWE)

Improper Neutralization of Special Elements used in a Command ('Command Injection')

CWE-77

Top Fix

Upgrade Version

Upgrade to version https://github.com/volcengine/verl.git - null

CVSS v3.1

Base Score:	6.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2025-50461

Good to know:

Date: August 18, 2025

Severity Score

Related Resources (7)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?