Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/06/16 3:54 a.m.9 views

CVE-2026-5497

A flaw was found in vLLM. An attacker can exploit this vulnerability by sending a specially crafted API request containing an excessive number of base64-encoded JPEG frames within a data URL. This unbounded processing of frames in the VideoMediaIO.loadbase64 method leads to an Out-of-Memory OOM...

7.5CVSS6.7AI score0.00543EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/04/28 8:35 a.m.10 views

CVE-2026-7141

A flaw was found in vllm. A remote attacker can exploit a vulnerability in the hasmambalayers function within the KV Block Handler component. By performing a specific manipulation, an uninitialized resource can be triggered, potentially leading to information disclosure or denial of service. The...

6.3CVSS5.1AI score0.00288EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/04/06 8:33 p.m.11 views

CVE-2026-34756

A flaw was found in vLLM, an inference and serving engine for large language models LLMs. An unauthenticated attacker can exploit this vulnerability by sending a specially crafted HTTP request with an excessively large 'n' parameter to the vLLM OpenAI-compatible API server. This can lead to a...

6.5CVSS7.1AI score0.0033EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/04/06 8:33 p.m.6 views

CVE-2026-34753

A flaw was found in vLLM. This server-side request forgery SSRF vulnerability allows an attacker who can control batch input JSON to force the vLLM batch runner to make arbitrary HTTP/HTTPS requests from the server. This can be exploited to access internal services, such as cloud metadata endpoin...

5.4CVSS7.2AI score0.00246EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/03/19 5:23 p.m.7 views

CVE-2025-29770

A flaw was found in vLLM. This vulnerability can allow Denial of Service via filesystem exhaustion. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicabilit...

6.5CVSS6.9AI score0.00421EPSS
Exploits0References6
Rows per page
Query Builder