Lucene search
K

1078 matches found

Chainguard
Chainguard
added 2026/06/23 8:16 a.m.15 views

GHSA-6V7P-G79W-8964 vulnerabilities

Vulnerabilities for packages: nemo, pypy-3.11, openstack-horizon-2025.2-fips, superset-fips, openstack-tempest-2025.2, openstack-tempest-2025.1, awx, jupyter-all-spark-notebook, mitmproxy, azure-functions-host, openstack-horizon-2025.2, openstack-glance-2026.1-fips, datadog-agent,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/23 8:16 a.m.7 views

GHSA-4XGF-CPJX-PC3J vulnerabilities

Vulnerabilities for packages: open-webui, airflow-postgres-fips, prefect, semgrep, airflow-core, prefect-fips, vllm-openai-cuda-13.0, vllm-cuda-13.2, mcp-atlassian, azureml-inference-server-http, tritonserver-backend-vllm-cuda-13.0, litellm, tritonserver-backend-vllm-cuda-12.9, lmcache-cuda-12.8,...

6.1AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/22 9:59 p.m.6 views

CVE-2026-54235

vLLM is an inference and serving engine for large language models LLMs. Prior to 0.23.1rc0, ll temperature validation gates use comparison operators , which silently evaluate to False for NaN and for positive Infinity in Python's IEEE 754 float semantics. Both values pass every guard and propagat...

6.9CVSS5.9AI score0.00261EPSS
Exploits1References4Affected Software1
Chainguard
Chainguard
added 2026/06/19 2:17 a.m.9 views

GHSA-M6QW-4CW2-HM4M vulnerabilities

Vulnerabilities for packages: py3-vllm-cuda-12.9, py3-vllm-cuda-12.4, tritonserver-backend-vllm-cuda-12.9, py3.13-scanner-test-libraries-aiohttp, py3-vllm-cuda-13.0...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/19 2:17 a.m.10 views

CVE-2026-50269 vulnerabilities

Vulnerabilities for packages: py3-vllm-cuda-12.9, py3-vllm-cuda-12.4, tritonserver-backend-vllm-cuda-12.9, py3.13-scanner-test-libraries-aiohttp, py3-vllm-cuda-13.0...

7.5CVSS6.1AI score0.00301EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/06/17 2:3 p.m.13 views

vLLM: GGUF dequantize kernel int truncation exposes uninitialized GPU memory in multi-tenant serving

Summary Integer truncation of tensor dimensions in vLLM's GGUF dequantize kernels csrc/quantization/gguf/ggufkernel.cu causes partial tensor processing. The output tensor is allocated at full size via torch::empty uninitialized memory, but the dequantize CUDA kernel processes only a truncated...

7.5CVSS5.6AI score0.00281EPSS
Exploits0References4Affected Software1
Chainguard
Chainguard
added 2026/06/17 8:56 a.m.12 views

CVE-2026-53540 vulnerabilities

Vulnerabilities for packages: airflow-core, wazuh-manager, wazuh-manager-fips, litellm, tritonserver-backend-vllm-cuda-12.9, airflow-postgres-fips, airflow...

3.7CVSS6.1AI score0.00217EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/17 8:56 a.m.11 views

CVE-2026-53537 vulnerabilities

Vulnerabilities for packages: airflow-core, wazuh-manager, wazuh-manager-fips, litellm, tritonserver-backend-vllm-cuda-12.9, airflow-postgres-fips, airflow...

5.3CVSS6.1AI score0.00177EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/17 8:56 a.m.8 views

GHSA-V9PG-7XVM-68HF vulnerabilities

Vulnerabilities for packages: airflow-core, wazuh-manager, wazuh-manager-fips, litellm, tritonserver-backend-vllm-cuda-12.9, airflow-postgres-fips, airflow...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/17 8:56 a.m.10 views

GHSA-6JV3-5F52-599M vulnerabilities

Vulnerabilities for packages: airflow-core, wazuh-manager, wazuh-manager-fips, litellm, tritonserver-backend-vllm-cuda-12.9, airflow-postgres-fips, airflow...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/17 8:56 a.m.8 views

CVE-2026-53539 vulnerabilities

Vulnerabilities for packages: airflow-core, wazuh-manager, wazuh-manager-fips, litellm, tritonserver-backend-vllm-cuda-12.9, airflow-postgres-fips, airflow...

7.5CVSS6.1AI score0.00263EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.11 views

GHSA-82W8-QH3P-5JFQ vulnerabilities

Vulnerabilities for packages: nemo, prefect, semgrep, airflow-core, mlflow-fips, prefect-fips, mlflow, tritonserver-backend-vllm-cuda-13.0, litellm, tritonserver-backend-vllm-cuda-12.9, airflow-postgres-fips, airflow...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.10 views

CVE-2026-54283 vulnerabilities

Vulnerabilities for packages: nemo, prefect, semgrep, airflow-core, mlflow-fips, prefect-fips, mlflow, tritonserver-backend-vllm-cuda-13.0, litellm, tritonserver-backend-vllm-cuda-12.9, airflow-postgres-fips, airflow...

7.5CVSS6.1AI score0.00275EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.8 views

CVE-2026-54282 vulnerabilities

Vulnerabilities for packages: nemo, prefect, semgrep, airflow-core, mlflow-fips, prefect-fips, mlflow, tritonserver-backend-vllm-cuda-13.0, litellm, tritonserver-backend-vllm-cuda-12.9, airflow-postgres-fips, airflow...

5.3CVSS6.1AI score0.00187EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.13 views

GHSA-JP82-JPQV-5VV3 vulnerabilities

Vulnerabilities for packages: nemo, prefect, semgrep, airflow-core, mlflow-fips, prefect-fips, mlflow, tritonserver-backend-vllm-cuda-13.0, litellm, tritonserver-backend-vllm-cuda-12.9, airflow-postgres-fips, airflow...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.9 views

GHSA-HPJ7-WQ8M-9HGP vulnerabilities

Vulnerabilities for packages: py3-vllm-cuda-12.4, awx, text-generation-inference, tritonserver-backend-vllm-cuda-13.0, airflow, request-1276, authentik, apache-beam-python-3.13-sdk, apache-beam-python-3.11-sdk, mlflow, dask-kubernetes-fips, tritonserver-backend-vllm-cuda-12.9, py3-vllm-cuda-13.0,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.10 views

GHSA-G3CQ-J2XW-WF74 vulnerabilities

Vulnerabilities for packages: py3-vllm-cuda-12.4, awx, text-generation-inference, tritonserver-backend-vllm-cuda-13.0, airflow, request-1276, authentik, apache-beam-python-3.13-sdk, apache-beam-python-3.11-sdk, mlflow, dask-kubernetes-fips, tritonserver-backend-vllm-cuda-12.9, py3-vllm-cuda-13.0,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.10 views

GHSA-4FVR-RGM6-GQMC vulnerabilities

Vulnerabilities for packages: py3-vllm-cuda-12.4, awx, text-generation-inference, tritonserver-backend-vllm-cuda-13.0, airflow, request-1276, authentik, apache-beam-python-3.13-sdk, apache-beam-python-3.11-sdk, mlflow, dask-kubernetes-fips, tritonserver-backend-vllm-cuda-12.9, py3-vllm-cuda-13.0,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.11 views

CVE-2026-54280 vulnerabilities

Vulnerabilities for packages: py3-vllm-cuda-12.4, awx, text-generation-inference, tritonserver-backend-vllm-cuda-13.0, airflow, request-1276, authentik, apache-beam-python-3.13-sdk, apache-beam-python-3.11-sdk, mlflow, dask-kubernetes-fips, tritonserver-backend-vllm-cuda-12.9, py3-vllm-cuda-13.0,...

7.5CVSS6.1AI score0.00281EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.10 views

CVE-2026-54277 vulnerabilities

Vulnerabilities for packages: py3-vllm-cuda-12.4, awx, text-generation-inference, tritonserver-backend-vllm-cuda-13.0, airflow, request-1276, authentik, apache-beam-python-3.13-sdk, apache-beam-python-3.11-sdk, mlflow, dask-kubernetes-fips, tritonserver-backend-vllm-cuda-12.9, py3-vllm-cuda-13.0,...

8.7CVSS6.1AI score0.00322EPSS
Exploits0
Rows per page
Query Builder