Lucene search
K

vLLM: incomplete CVE-2026-22778 fix leaks PIL repr addresses via Anthropic router

🗓️ 17 Jun 2026 14:04:09Reported by GitHub Advisory DatabaseType 
github
 github
🔗 github.com👁 22 Views

Incomplete fix leaks heap addresses in error messages via PIL object repr in Anthropic router.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-22778
2 Feb 202621:09
attackerkb
ATTACKERKB
CVE-2026-54236
22 Jun 202622:09
attackerkb
Chainguard
CVE-2026-22778 vulnerabilities
27 Mar 202601:17
cgr
Chainguard
CVE-2026-54236 vulnerabilities
2 Jul 202602:17
cgr
Circl
CVE-2026-22778
2 Feb 202623:21
circl
Circl
CVE-2026-54236
21 Jun 202623:10
circl
CNNVD
vLLM 日志信息泄露漏洞
2 Feb 202600:00
cnnvd
CVE
CVE-2026-22778
2 Feb 202621:09
cve
CVE
CVE-2026-54236
22 Jun 202622:09
cve
Cvelist
CVE-2026-22778 vLLM leaks a heap address when PIL throws an error
2 Feb 202621:09
cvelist
Rows per page
Vulners
Node
vllmvllmRange0.23.0pip

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 14:05Current
6.8Medium risk
Vulners AI Score6.8
CVSS 3.19.8
EPSS0.03816
SSVC
22