Remote Code Execution (RCE)

vllm is vulnerable to Remote Code Execution RCE. The vulnerability is due to unsafe deserialization exposed over ZMQ/TCP on all network interfaces when vLLM is configured to use Mooncake, allowing an attacker to execute arbitrary code on distributed hosts...

vLLM 代码问题漏洞

vLLM is a high throughput and memory efficient inference and service engine for LLM from the vLLM open source. A code issue vulnerability exists in vLLM that stems from insecure deserialization in the Mooncake configuration that could lead to remote code execution...