Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 34 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-46722 vLLM has a Weakness in MultiModalHasher Image Hashing Implementation vllm-projectvllm Medium 4.2 2025-05-29 16:36:13 Deep Dive
CVE-2025-46570 vLLM’s Chunk-Based Prefix Caching Vulnerable to Potential Timing Side-Channel vllm-projectvllm Low 2.6 2025-05-29 16:32:43 Deep Dive
CVE-2025-47277 vLLM Allows Remote Code Execution via PyNcclPipe Communication Service vllm-projectvllm Critical 9.8 2025-05-20 17:32:27 Deep Dive
CVE-2025-30165 Remote Code Execution Vulnerability in vLLM Multi-Node Cluster Configuration vllm-projectvllm High 8.0 2025-05-06 16:53:53 Deep Dive
CVE-2025-32444 vLLM Vulnerable to Remote Code Execution via Mooncake Integration vllm-projectvllm Critical 10.0 2025-04-30 00:25:01 Deep Dive
CVE-2025-46560 vLLM phi4mm: Quadratic Time Complexity in Input Token Processing​ leads to denial of service vllm-projectvllm Medium 6.5 2025-04-30 00:24:54 Deep Dive
CVE-2025-30202 Data exposure via ZeroMQ on multi-node vLLM deployment vllm-projectvllm High 7.5 2025-04-30 00:24:46 Deep Dive
CVE-2024-11041 Remote Code Execution in vllm-project/vllm vllm-projectvllm-project/vllm 超危 -2025-03-20 10:10:41 Deep Dive
CVE-2024-9053 Remote Code Execution in vllm-project/vllm vllm-projectvllm-project/vllm 超危 -2025-03-20 10:09:34 Deep Dive
CVE-2025-29783 vLLM Allows Remote Code Execution via Mooncake Integration vllm-projectvllm Critical 9.0 2025-03-19 15:33:29 Deep Dive
CVE-2025-29770 vLLM denial of service via outlines unbounded cache on disk vllm-projectvllm Medium 6.5 2025-03-19 15:31:00 Deep Dive
CVE-2025-1953 vLLM AIBrix Prefix Caching hash.go random values vLLMAIBrix Low 2.6 2025-03-04 20:00:10 Deep Dive
CVE-2025-25183 vLLM using built-in hash() from Python 3.12 leads to predictable hash collisions in vLLM prefix cache vllm-projectvllm Low 2.6 2025-02-07 19:59:01 Deep Dive
CVE-2025-24357 vLLM allows a malicious model RCE by torch.load in hf_model_weights_iterator vllm-projectvllm High 7.5 2025-01-27 17:38:20 Deep Dive