Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-29945

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.0065EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:51 a.m.7 views

CVE-2022-45177

An issue was discovered in LIVEBOX Collaboration vDesk through v031. An Observable Response Discrepancy can occur under the /api/v1/vdeskintegration/user/isenableuser endpoint, the /api/v1/sharedsearch?search=NAME+SURNAME endpoint, and the /login endpoint. The web application provides different...

7.5CVSS6.6AI score0.00539EPSS
Exploits0References1
NVD
NVD
added 2025/04/30 1:15 a.m.39 views

CVE-2025-30202

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Versions starting from 0.5.2 and prior to 0.8.5 are vulnerable to denial of service and data exposure via ZeroMQ on multi-node vLLM deployment. In a multi-node vLLM deployment, vLLM uses ZeroMQ for some multi-no...

7.5CVSS0.00505EPSS
Exploits1References3
CVE
CVE
added 2025/04/30 12:24 a.m.218 views

CVE-2025-30202

CVE-2025-30202 affects vLLM versions 0.5.2 up to 0.8.4 (prior to 0.8.5) in multi-node deployments. The root cause is an XPUB ZeroMQ socket bound to ALL interfaces on the primary host used for tensor parallelism, which can be accessed by any client with network access. This allows potential data e...

7.5CVSS7.7AI score0.00505EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/30 12:24 a.m.6 views

CVE-2025-30202 Data exposure via ZeroMQ on multi-node vLLM deployment

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Versions starting from 0.5.2 and prior to 0.8.5 are vulnerable to denial of service and data exposure via ZeroMQ on multi-node vLLM deployment. In a multi-node vLLM deployment, vLLM uses ZeroMQ for some multi-no...

7.5CVSS7.7AI score0.00505EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/04/29 12:0 a.m.3 views

PT-2025-18215 · Vllm +1 · Vllm +1

Name of the Vulnerable Software and Affected Versions: vLLM versions 0.5.2 through 0.8.5 Description: The issue affects vLLM, a high-throughput and memory-efficient inference and serving engine for LLMs. In a multi-node vLLM deployment, vLLM uses ZeroMQ for some multi-node communication purposes,...

7.5CVSS7.4AI score0.00505EPSS
Exploits1References19
AlpineLinux
AlpineLinux
added 2024/02/21 4:15 p.m.20 views

CVE-2022-45177

An issue was discovered in LIVEBOX Collaboration vDesk through v031. An Observable Response Discrepancy can occur under the /api/v1/vdeskintegration/user/isenableuser endpoint, the /api/v1/sharedsearch?search=NAME+SURNAME endpoint, and the /login endpoint. The web application provides different...

7.5CVSS7AI score0.00539EPSS
Exploits0References1
NVD
NVD
added 2024/02/21 4:15 p.m.11 views

CVE-2022-45177

An issue was discovered in LIVEBOX Collaboration vDesk through v031. An Observable Response Discrepancy can occur under the /api/v1/vdeskintegration/user/isenableuser endpoint, the /api/v1/sharedsearch?search=NAME+SURNAME endpoint, and the /login endpoint. The web application provides different...

7.5CVSS7.4AI score0.00539EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/21 12:0 a.m.15 views

CVE-2022-45177

An issue was discovered in LIVEBOX Collaboration vDesk through v031. An Observable Response Discrepancy can occur under the /api/v1/vdeskintegration/user/isenableuser endpoint, the /api/v1/sharedsearch?search=NAME+SURNAME endpoint, and the /login endpoint. The web application provides different...

6.6AI score0.00539EPSS
Exploits0References1
Huntr
Huntr
added 2021/09/05 12:50 p.m.9 views

in fisharebest/webtrees

✍️ Description The product provides different responses to incoming requests in a way that reveals internal state information to an unauthorized actor outside of the intended control sphere. The Forgot Password feature can be exploited to conduct user enumeration. If the given email exists in the...

Exploits0References1
NVD
NVD
added 2001/07/10 4:0 a.m.30 views

CVE-2001-1141

The Pseudo-Random Number Generator PRNG in SSLeay and OpenSSL before 0.9.6b allows attackers to use the output of small PRNG requests to determine the internal state information, which could be used by attackers to predict future pseudo-random numbers...

5CVSS6.3AI score0.04988EPSS
Exploits0References10
Rows per page
Query Builder