CVE-2025-11915

Medium CVSS: 6.9

Connection desynchronization between an HTTP proxy and the model backend. The fixes were rolled out for all proxies in front of impacted models by 2025-09-28. Users do not need to take any action.

Vendor

Product

CWE

CWE-444

Yayın Tarihi

2025-10-22 10:15:31

Güncelleme

2025-10-22 21:12:48

Source Identifier

f45cbf4e-4146-4068-b7e1-655ffc2c548c

KEV Date Added

Kategoriler

CWE-444 MEDIUM 2025

Referanslar

https://cloud.google.com/vertex-ai/generative-ai/docs/security-bulletins#gcp-2025-059