CVE-2025-3163

CVE-2025-3163 affects InternLM LMDeploy up to version 0.7.1. The vulnerability targets the function Open in lmdeploy/docs/en/conf.py, where input manipulation leads to arbitrary code execution. The issue enables a local-host attack, and public disclosure of the exploit is noted in multiple source...

CVE-2025-3162

A vulnerability was found in InternLM LMDeploy up to 0.7.1. It has been classified as critical. Affected is the function loadweightckpt of the file lmdeploy/lmdeploy/vl/model/utils.py of the component PT File Handler. The manipulation leads to deserialization. Attacking locally is a requirement...

CVE-2025-3162

A vulnerability was found in InternLM LMDeploy up to 0.7.1. It has been classified as critical. Affected is the function loadweightckpt of the file lmdeploy/lmdeploy/vl/model/utils.py of the component PT File Handler. The manipulation leads to deserialization. Attacking locally is a requirement...

CVE-2025-3162 InternLM LMDeploy PT File utils.py load_weight_ckpt deserialization

A vulnerability was found in InternLM LMDeploy up to 0.7.1. It has been classified as critical. Affected is the function loadweightckpt of the file lmdeploy/lmdeploy/vl/model/utils.py of the component PT File Handler. The manipulation leads to deserialization. Attacking locally is a requirement...

CVE-2025-3162 InternLM LMDeploy PT File utils.py load_weight_ckpt deserialization

A vulnerability was found in InternLM LMDeploy up to 0.7.1. It has been classified as critical. Affected is the function loadweightckpt of the file lmdeploy/lmdeploy/vl/model/utils.py of the component PT File Handler. The manipulation leads to deserialization. Attacking locally is a requirement...

CVE-2025-3162

CVE-2025-3162 affects InternLM LMDeploy (up to 0.7.1). Affected is the function load_weight_ckpt in lmdeploy/lmdeploy/vl/model/utils.py (PT File Handler). The underlying issue is insecure/deserialization of inputs, enabling a local attacker to manipulate deserialization. Attacking locally is a re...

lmdeploy 安全漏洞

lmdeploy is an InternLM open source toolkit for compressing, deploying and serving LLM. A security vulnerability exists in lmdeploy version 0.7.1 and earlier, which stems from a deserialization issue in the PT file handling component...

lmdeploy 安全漏洞

lmdeploy is an InternLM open source toolkit for compressing, deploying and servicing LLM. A security vulnerability exists in lmdeploy version 0.7.1 and earlier, which stems from a code injection issue...

PT-2025-14771 · Unknown · Internlm Lmdeploy

Name of the Vulnerable Software and Affected Versions: InternLM LMDeploy versions up to 0.7.1 Description: A critical vulnerability was found in InternLM LMDeploy, affecting the function Open of the file lmdeploy/docs/en/conf.py. The manipulation leads to code injection, and it is possible to...

PT-2025-14770 · Unknown · Internlm Lmdeploy

Name of the Vulnerable Software and Affected Versions: InternLM LMDeploy versions up to 0.7.1 Description: A critical issue was found in InternLM LMDeploy, affecting the function load weight ckpt of the file lmdeploy/lmdeploy/vl/model/utils.py in the component PT File Handler. The manipulation...