CVE-2026-7141

🗓️ 27 Apr 2026 16:45:12Reported by VulDBType

CVE-2026-7141 in vllm has_mamba_layers causes an uninitialized resource in the block handler.

Reporter	Title	Published	Views	Family All 15
ATTACKERKB	CVE-2026-7141	27 Apr 202616:45	–	attackerkb
Chainguard	CVE-2026-7141 vulnerabilities	1 Jun 202619:18	–	cgr
CNNVD	vLLM 安全漏洞	27 Apr 202600:00	–	cnnvd
Cvelist	CVE-2026-7141 vllm KV Block kv_cache_interface.py has_mamba_layers uninitialized resource	27 Apr 202616:45	–	cvelist
EUVD	EUVD-2026-25892	27 Apr 202616:45	–	euvd
Github Security Blog	vLLM makes Use of Uninitialized Resource	27 Apr 202618:32	–	github
NVD	CVE-2026-7141	27 Apr 202617:16	–	nvd
OSV	CGA-9F55-657J-HGC7	8 May 202613:24	–	osv
OSV	GHSA-X368-4G9H-FVV4 vLLM makes Use of Uninitialized Resource	27 Apr 202618:32	–	osv
Positive Technologies	PT-2026-35459	27 Apr 202600:00	–	ptsecurity

NVD

Vulners

Node

vllm vllmRange≤0.19.0

[
  {
    "vendor": "n/a",
    "product": "vllm",
    "versions": [
      {
        "version": "0.1",
        "status": "affected"
      },
      {
        "version": "0.2",
        "status": "affected"
      },
      {
        "version": "0.3",
        "status": "affected"
      },
      {
        "version": "0.4",
        "status": "affected"
      },
      {
        "version": "0.5",
        "status": "affected"
      },
      {
        "version": "0.6",
        "status": "affected"
      },
      {
        "version": "0.7",
        "status": "affected"
      },
      {
        "version": "0.8",
        "status": "affected"
      },
      {
        "version": "0.9",
        "status": "affected"
      },
      {
        "version": "0.10",
        "status": "affected"
      },
      {
        "version": "0.11",
        "status": "affected"
      },
      {
        "version": "0.12",
        "status": "affected"
      },
      {
        "version": "0.13",
        "status": "affected"
      },
      {
        "version": "0.14",
        "status": "affected"
      },
      {
        "version": "0.15",
        "status": "affected"
      },
      {
        "version": "0.16",
        "status": "affected"
      },
      {
        "version": "0.17",
        "status": "affected"
      },
      {
        "version": "0.18",
        "status": "affected"
      },
      {
        "version": "0.19.0",
        "status": "affected"
      }
    ],
    "cpes": [
      "cpe:2.3:a:vllm:vllm:*:*:*:*:*:*:*:*"
    ],
    "modules": [
      "KV Block Handler"
    ]
  }
]

Source	Link
github	www.github.com/vllm-project/vllm/issues/39146
vuldb	www.vuldb.com/vuln/359740
github	www.github.com/AjAnubolu/vllm/commit/1ad67864c0c20f167929e64c875f5c28e1aad9fd
github	www.github.com/vllm-project/vllm/pull/39283
vuldb	www.vuldb.com/vuln/359740/cti
github	www.github.com/vllm-project/vllm/issues/39146
vuldb	www.vuldb.com/submit/801297

17 Jun 2026 11:01Current

5.4Medium risk

Vulners AI Score5.4

CVSS 25.1

CVSS 3.15.6

CVSS 46.3

CVSS 35.6

EPSS0.00288

SSVC

CWE-908