CVE-2025-24357

High CVSS: 7.5

vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py implements hf_model_weights_iterator to load the model checkpoint, which is downloaded from huggingface. It uses the torch.load function and the weights_only parameter defaults to False. When torch.load loads malicious pickle data, it will execute arbitrary code during unpickling. This vulnerability is fixed in v0.7.0.

Vendor

Vllm

Product

Vllm

CWE

CWE-502

Yayın Tarihi

2025-01-27 18:15:41

Güncelleme

2025-06-27 19:30:59

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-502 Vllm HIGH Vllm 2025

Referanslar

https://github.com/vllm-project/vllm/commit/d3d6bb13fb62da3234addf6574922a4ec0513d04 https://github.com/vllm-project/vllm/pull/12366 https://github.com/vllm-project/vllm/security/advisories/GHSA-rh4j-5rhw-hr54 https://pytorch.org/docs/stable/generated/torch.load.html

Benzer Kayıtlar

High

CVE-2026-27893

vLLM is an inference and serving engine for large language models (LLMs). Starting in version 0.10.1 and prior to versio…

High

CVE-2026-25960

vLLM is an inference and serving engine for large language models (LLMs). The SSRF protection fix for CVE-2026-24779 add…

Critical

CVE-2026-22778

vLLM is an inference and serving engine for large language models (LLMs). From 0.8.3 to before 0.14.1, when an invalid i…

High

CVE-2026-24779

vLLM is an inference and serving engine for large language models (LLMs). Prior to version 0.14.1, a Server-Side Request…

High

CVE-2026-22807

vLLM is an inference and serving engine for large language models (LLMs). Starting in version 0.10.1 and prior to versio…

Medium

CVE-2026-22773

vLLM is an inference and serving engine for large language models (LLMs). In versions from 0.6.4 to before 0.12.0, users…