Package impact
PyPI / pytorch-lightning
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-44484 | critical | 9.8 | 9.8 | 20d ago | Compromise of PyTorch Lightning PyPi Package Versions | |||
| CVE-2026-31221 | high | 7.8 | 7.8 | 22d ago | PyTorch Lightning load_from_checkpoint has an insecure checkpoint deserialization | |||
| CVE-2024-8020 | unknown | — | — | 1y ago | PyTorch Lightning denial of service vulnerability | |||
| CVE-2024-8019 | unknown | — | — | 1y ago | PyTorch Lightning path traversal vulnerability | |||
| CVE-2022-0845 | unknown | — | — | 4y ago | Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0. | |||
| CVE-2021-4118 | unknown | — | — | 5y ago | pytorch-lightning is vulnerable to Deserialization of Untrusted Data |