Lucene search
+L

4 matches found

CNNVD
CNNVD
added 2026/05/27 12:0 a.m.16 views

pam_usb 输入验证错误漏洞

pamusb is a Linux hardware authentication tool developed by McDope’s individual developer, based on USB devices. Versions of pamusb prior to 0.9.1 contained a input validation vulnerability. This vulnerability stems from the lack of an upper limit on the number of ndevices being counted in...

6.7CVSS5.9AI score0.00149EPSS
Exploits0References3
CVE
CVE
added 2026/04/06 3:40 p.m.25 views

CVE-2026-34756

CVE-2026-34756 affects vLLM OpenAI-compatible API server prior to 0.19.0. The root cause is missing upper-bound validation on the n parameter in ChatCompletionRequest/CompletionRequest, allowing an unauthenticated attacker to send an astronomically large n value that causes the asyncio event loop...

6.5CVSS5.9AI score0.00346EPSS
Exploits0References8Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/06 3:40 p.m.7 views

CVE-2026-34756 vLLM Affected by Unauthenticated OOM Denial of Service via Unbounded `n` Parameter in OpenAI API Server

vLLM is an inference and serving engine for large language models LLMs. From 0.1.0 to before 0.19.0, a Denial of Service vulnerability exists in the vLLM OpenAI-compatible API server. Due to the lack of an upper bound validation on the n parameter in the ChatCompletionRequest and CompletionReques...

6.5CVSS5.9AI score0.00346EPSS
Exploits0References3
OSV
OSV
added 2026/04/03 3:35 p.m.7 views

GHSA-3MWP-WVH9-7528 vLLM: Unauthenticated OOM Denial of Service via Unbounded `n` Parameter in OpenAI API Server

Summary A Denial of Service vulnerability exists in the vLLM OpenAI-compatible API server. Due to the lack of an upper bound validation on the n parameter in the ChatCompletionRequest and CompletionRequest Pydantic models, an unauthenticated attacker can send a single HTTP request with an...

6.5CVSS6AI score0.00346EPSS
Exploits0References11
Rows per page
Query Builder