Improper Neutralization of Special Elements used in a Command ('Command Injection')
In PyTorch before trunk/89695, torch.jit.annotations.parse_type_line can cause arbitrary code execution because eval is used unsafely.
Advisories for Pypi/Torch package
2022