| license: other | |
| tags: | |
| - huntr | |
| - model-file-vulnerability | |
| - executorch | |
| - proof-of-concept | |
| # ExecuTorch PTE Triggered Inference Backdoor PoC | |
| This repository contains a benign proof-of-concept for an ExecuTorch model-file | |
| vulnerability report. The backdoored `model.pte` encodes a targeted inference | |
| backdoor in model weights. It behaves normally on benign inputs and flips the | |
| output class only for a trigger input. | |
| The payload is an inference-behavior demonstration only. It contains no code | |
| execution payload, network access, persistence, credential access, or | |
| destructive behavior. | |