Lucene search
K

6 matches found

Chainguard
Chainguard
added 2025/06/06 7:15 a.m.13 views

CVE-2025-48944 vulnerabilities

Vulnerabilities for packages: py3.10-vllm-cuda-11.8, tritonserver-backend-vllm...

6.5CVSS6.6AI score0.00449EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/30 9:14 p.m.18 views

CVE-2025-48944

A denial of service flaw was found in vLLM. This flaw allows a remote attacker with access to /v1/chat/completions OpenAPI endpoint to submit malformed data in the "pattern" and "type" fields to crash the vLLM instance. Mitigation Mitigation for this issue is either not available or the currently...

6.5CVSS6.2AI score0.00449EPSS
Exploits1References5
CVE
CVE
added 2025/05/30 6:38 p.m.175 views

CVE-2025-48944

vLLM (inference/serving engine) is affected when running versions 0.8.0 up to but excluding 0.9.0 with the /v1/chat/completions OpenAPI endpoint. The root cause is lack of validation for unexpected or malformed inputs in the pattern and type fields when the tools functionality is invoked, allowin...

6.5CVSS7AI score0.00449EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/05/30 6:38 p.m.24 views

CVE-2025-48944 vLLM Tool Schema allows DoS via Malformed pattern and type Fields

vLLM is an inference and serving engine for large language models LLMs. In version 0.8.0 up to but excluding 0.9.0, the vLLM backend used with the /v1/chat/completions OpenAPI endpoint fails to validate unexpected or malformed input in the "pattern" and "type" fields when the tools functionality ...

6.5CVSS0.00449EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/05/30 6:38 p.m.11 views

CVE-2025-48944 vLLM Tool Schema allows DoS via Malformed pattern and type Fields

vLLM is an inference and serving engine for large language models LLMs. In version 0.8.0 up to but excluding 0.9.0, the vLLM backend used with the /v1/chat/completions OpenAPI endpoint fails to validate unexpected or malformed input in the "pattern" and "type" fields when the tools functionality ...

6.5CVSS7.1AI score0.00449EPSS
Exploits1References2
Circl
Circl
added 2025/05/28 5:28 p.m.17 views

CVE-2025-48944

creationtimestamp| type| source ---|---|--- 2025-05-28 17:28:13+00:00| published-proof-of-concept| https://github.com/vllm-project/vllm/security/advisories/GHSA-vrq3-r879-7m65 2025-05-30 19:07:48+00:00| seen|...

6.5CVSS5.7AI score0.00449EPSS
Exploits1References3
Rows per page
Query Builder