CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Positive Technologies•added 2026/04/02 12:0 a.m.•2 views

PT-2026-29877

vLLM is an inference and serving engine for large language models LLMs. From version 0.5.5 to before version 0.18.0, Librosa defaults to using numpy.mean for mono downmixing to mono, while the international standard ITU-R BS.775-4 specifies a weighted downmixing algorithm. This discrepancy result...

5.9CVSS5.8AI score0.00075EPSS

Exploits0References6

GithubExploit•added 2026/01/05 6:58 p.m.•100 views

FoolishScan

Foolish Scan v2.3 Gold Master Context-Aware CTF & Lab Re...

7.1AI score

Exploits0

GithubExploit•added 2026/01/05 6:58 p.m.•103 views

FoolishScan-

Foolish Scan v2.3 Gold Master Context-Aware CTF & Lab Re...

7.1AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-16189

Malicious code in bioql PyPI...

2.6CVSS6.3AI score0.00177EPSS

Exploits0References4

NVD•added 2025/05/30 7:15 p.m.•11 views

CVE-2025-48942

vLLM is an inference and serving engine for large language models LLMs. In versions 0.8.0 up to but excluding 0.9.0, hitting the /v1/completions API with a invalid jsonschema as a Guided Param kills the vllm server. This vulnerability is similar GHSA-9hcf-v7m4-6m2j/CVE-2025-48943, but for regex...

6.5CVSS0.0021EPSS

Exploits1References4

OSV•added 2025/05/30 6:38 p.m.•1 views

CVE-2025-48944 vLLM Tool Schema allows DoS via Malformed pattern and type Fields

vLLM is an inference and serving engine for large language models LLMs. In version 0.8.0 up to but excluding 0.9.0, the vLLM backend used with the /v1/chat/completions OpenAPI endpoint fails to validate unexpected or malformed input in the "pattern" and "type" fields when the tools functionality ...

6.5CVSS6.5AI score0.00318EPSS

Exploits1References4

OSV•added 2025/05/29 5:15 p.m.•2 views

PYSEC-2025-53

vLLM is an inference and serving engine for large language models LLMs. Prior to version 0.9.0, when a new prompt is processed, if the PageAttention mechanism finds a matching prefix chunk, the prefill process speeds up, which is reflected in the TTFT Time to First Token. These timing differences...

2.6CVSS7AI score0.00177EPSS

Exploits0References3

CNNVD•added 2025/03/20 12:0 a.m.•1 views

编号撤回

vLLM is vLLM open source a high throughput and memory efficient inference and service engine for LLM. This CVE number has been withdrawn...

7.6AI score

Exploits0References1

CNNVD•added 2025/02/07 12:0 a.m.•1 views

vLLM 安全漏洞

vLLM is a high throughput and memory efficient inference and service engine for LLM from the vLLM open source. A security vulnerability exists in vLLM that stems from a maliciously constructed statement that could lead to a hash collision, which could lead to cache reuse, which could interfere wi...

2.6CVSS4.3AI score0.00323EPSS

Exploits0References3

Snyk•added 2025/02/06 8:0 p.m.•2 views

Use of Weak Hash

Overview vllm is an A high-throughput and memory-efficient inference and serving engine for LLMs Affected versions of this package are vulnerable to Use of Weak Hash due to the use of a predictable constant value in the Python 3.12 built-in hash function. An attacker can interfere with subsequent...

2.6CVSS6.9AI score0.00323EPSS

Exploits0References2

Spring Engineering•added 2024/07/31 12:0 a.m.•9 views

Spring AI with Groq - a blazingly fast AI inference engine

Faster information processing not only informs - it transforms how we perceive and innovate. Spring AI, a powerful framework for integrating AI capabilities into Spring applications, now offers support for Groq - a blazingly fast AI inference engine with support for Tool/Function calling...

6.9AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by