Количество 3
Количество 3
CVE-2024-9052
A flaw was found in the vLLM distributed training API. This vulnerability allows remote code execution via unsafe deserialization, which uses pickle.loads() without sanitization.
CVE-2024-9052
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
GHSA-pgr7-mhp5-fgjp
vLLM deserialization vulnerability in vllm.distributed.GroupCoordinator.recv_object
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-9052 A flaw was found in the vLLM distributed training API. This vulnerability allows remote code execution via unsafe deserialization, which uses pickle.loads() without sanitization. | CVSS3: 2.6 | 10 месяцев назад | |
 | CVE-2024-9052 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 10 месяцев назад | ||
| GHSA-pgr7-mhp5-fgjp vLLM deserialization vulnerability in vllm.distributed.GroupCoordinator.recv_object | CVSS3: 9.8 | 10 месяцев назад |
Уязвимостей на страницу