PyTorch Lightning Versions 2.6.2 and 2.6.3 Contain Credential Harvesting Mechanism — CVE-2026-44484

PyTorch Lightning, a deep learning framework used to pretrain and finetune AI models, introduced functionality in versions 2.6.2 and 2.6.3 consistent with a credential harvesting mechanism. NVD published CVE-2026-44484 on May 14, 2026, with a CVSS 4.0 base score of 9.3 (Critical severity). The GitHub Security Advisory GHSA-w37p-236h-pfx3 confirms the issue.

The specific attack vector is not fully detailed in the NVD entry, but the description of 'functionality consistent with a credential harvesting mechanism' suggests that the affected versions may collect or exfiltrate credentials during model training or framework initialization. Organizations using PyTorch Lightning for production model training or research should assume that credentials accessible to the training environment may have been exposed.

PyTorch Lightning versions 2.6.2 and 2.6.3. Organizations running AI model training pipelines, MLOps platforms, or research environments using these versions should audit for credential exposure. Cloud-based training environments with access to service accounts, API keys, or secrets stores are at particular risk.

Immediately upgrade PyTorch Lightning to a patched version (version details not yet specified in NVD entry as of May 14, 2026; check GitHub advisory GHSA-w37p-236h-pfx3 for remediation guidance). Rotate all credentials that were accessible in environments where PyTorch Lightning 2.6.2 or 2.6.3 was executed, including cloud IAM credentials, API keys, and secrets-store tokens. Audit training job logs and environment configurations for evidence of credential exfiltration.