Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-42303

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00306EPSS
Exploits0References2
PyPA
PyPA
added 2025/02/07 8:15 p.m.6 views

PYSEC-2025-62

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Maliciously constructed statements can lead to hash collisions, resulting in cache reuse, which can interfere with subsequent responses and cause unintended behavior. Prefix caching makes use of Python's built-i...

2.6CVSS6.6AI score0.00176EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/07 7:59 p.m.9 views

CVE-2025-25183 vLLM using built-in hash() from Python 3.12 leads to predictable hash collisions in vLLM prefix cache

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Maliciously constructed statements can lead to hash collisions, resulting in cache reuse, which can interfere with subsequent responses and cause unintended behavior. Prefix caching makes use of Python's built-i...

2.6CVSS3.5AI score0.00176EPSS
Exploits0References3
OSV
OSV
added 2024/10/16 7:15 p.m.3 views

DEBIAN-CVE-2024-47188

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" leads to byte-range tracking having predictable hash table behavior. This can lead to an attacker...

7.5CVSS8.2AI score0.00283EPSS
Exploits0References1
OSV
OSV
added 2024/10/16 7:15 p.m.3 views

DEBIAN-CVE-2024-47187

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" leads to datasets having predictable hash table behavior. This can lead to dataset file loading to us...

7.5CVSS8.2AI score0.00306EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/16 12:0 a.m.4 views

Suricata 安全特征问题漏洞

Suricata is a network IDS, IPS and NSM engine from the Open Information Security Foundation. A security signature issue vulnerability exists in Suricata versions prior to 7.0.7, which stems from a lack of initialization of the "thash" random seed, which results in byte range tracking with...

7.5CVSS6.3AI score0.00283EPSS
Exploits0References5
Rows per page
Query Builder