GHSA-5vqr-wprc-cpp7

Source

https://github.com/advisories/GHSA-5vqr-wprc-cpp7

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/03/GHSA-5vqr-wprc-cpp7/GHSA-5vqr-wprc-cpp7.json

JSON Data

https://api.test.osv.dev/v1/vulns/GHSA-5vqr-wprc-cpp7

Aliases

CVE-2024-11041

Related

CGA-3gj6-jf93-72w6

Published

2025-03-20T12:32:41Z

Modified

2026-01-30T02:40:13.958261Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

vLLM Deserialization of Untrusted Data vulnerability

Details

vllm-project vllm version v0.6.2 contains a vulnerability in the MessageQueue.dequeue() API function. The function uses pickle.loads to parse received sockets directly, leading to a remote code execution vulnerability. An attacker can exploit this by sending a malicious payload to the MessageQueue, causing the victim's machine to execute arbitrary code.

Database specific

{
    "cwe_ids": [
        "CWE-502"
    ],
    "github_reviewed_at": "2025-03-21T16:55:37Z",
    "github_reviewed": true,
    "severity": "CRITICAL",
    "nvd_published_at": "2025-03-20T10:15:23Z"
}

References

Affected packages

PyPI / vllm

Package

Name: vllm; View open source insights on deps.dev
Purl: pkg:pypi/vllm

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

0.6.2

Affected versions

0.*

0.0.1

0.1.0

0.1.1

0.1.2

0.1.3

0.1.4

0.1.5

0.1.6

0.1.7

0.2.0

0.2.1

0.2.1.post1

0.2.2

0.2.3

0.2.4

0.2.5

0.2.6

0.2.7

0.3.0

0.3.1

0.3.2

0.3.3

0.4.0

0.4.0.post1

0.4.1

0.4.2

0.4.3

0.5.0

0.5.0.post1

0.5.1

0.5.2

0.5.3

0.5.3.post1

0.5.4

0.5.5

0.6.0

0.6.1

0.6.1.post1

0.6.1.post2

0.6.2

Database specific

source

"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/03/GHSA-5vqr-wprc-cpp7/GHSA-5vqr-wprc-cpp7.json"