Lucene search
K

10 matches found

NVD
NVD
added 2026/06/22 11:16 p.m.13 views

CVE-2026-54235

vLLM is an inference and serving engine for large language models LLMs. Prior to 0.23.1rc0, ll temperature validation gates use comparison operators , which silently evaluate to False for NaN and for positive Infinity in Python's IEEE 754 float semantics. Both values pass every guard and propagat...

6.9CVSS0.00261EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:53 a.m.1 views

SUSE CVE-2020-26890

Matrix Synapse before 1.20.0 erroneously permits non-standard NaN, Infinity, and -Infinity JSON values in fields of m.room.member events, allowing remote attackers to execute a denial of service attack against the federation and common Matrix clients. If such a malformed event is accepted into th...

7.5CVSS7.5AI score0.02967EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:43 a.m.1 views

SUSE CVE-2021-29510

Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either 'infinity', 'inf' or float'inf' or their negatives to datetime or date fields causes validation to run forever with 100% CPU usage on one CPU. Pydantic has been patched with fixes...

7.5CVSS6.8AI score0.00967EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.6 views

The vulnerability of Pydantic’s date fields in data analysis and verification processes, related to executing a loop with an unavailable exit condition, allows attackers to cause service failures.

The vulnerability of the date field in Pydantic’s data analysis and verification mechanisms is related to the incorrect handling of data types like infinity, inf, and float'inf' within the date field. Exploiting this vulnerability can allow an attacker to cause service failures...

7.5CVSS7.2AI score0.00967EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2021/05/13 7:15 p.m.2 views

DEBIAN-CVE-2021-29510

Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either 'infinity', 'inf' or float'inf' or their negatives to datetime or date fields causes validation to run forever with 100% CPU usage on one CPU. Pydantic has been patched with fixes...

7.5CVSS7.1AI score0.00967EPSS
Exploits0References1
PyPA
PyPA
added 2021/05/13 7:15 p.m.4 views

PYSEC-2021-47

Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either 'infinity', 'inf' or float'inf' or their negatives to datetime or date fields causes validation to run forever with 100% CPU usage on one CPU. Pydantic has been patched with fixes...

7.5CVSS6.8AI score0.00967EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/05/13 7:15 p.m.1 views

UBUNTU-CVE-2021-29510

Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either 'infinity', 'inf' or float'inf' or their negatives to datetime or date fields causes validation to run forever with 100% CPU usage on one CPU. Pydantic has been patched with fixes...

7.5CVSS7AI score0.00967EPSS
Exploits0References3
OSV
OSV
added 2021/05/13 7:15 p.m.4 views

PYSEC-2021-47

Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either 'infinity', 'inf' or float'inf' or their negatives to datetime or date fields causes validation to run forever with 100% CPU usage on one CPU. Pydantic has been patched with fixes...

7.5CVSS5.8AI score0.00967EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/05/01 12:0 a.m.3 views

PT-2021-4109 · Pypi +2 · Pydantic +2

Name of the Vulnerable Software and Affected Versions: Pydantic versions prior to v1.6.2 Pydantic versions prior to v1.7.4 Pydantic versions prior to v1.8.2 Description: The issue is related to the incorrect handling of 'infinity', 'inf', and float'inf' values in date fields, causing validation t...

7.5CVSS7.2AI score0.00967EPSS
Exploits0References28
CNVD
CNVD
added 2017/09/22 12:0 a.m.2 views

libsndfile d2alaw_array() function out-of-bounds read vulnerability

Libsndfile is a C library for reading and writing files containing sampled sounds e.g. MS Windows WAV and Apple/SGI AIFF formats through a standard library interface. An out-of-bounds read vulnerability in the d2alawarray function in alaw.c in Libsndfile could lead to a remote denial-of-service...

8.1CVSS6.4AI score0.02043EPSS
Exploits0References1
Rows per page
Query Builder