vLLM Support & Health

GHSA-2pc9-4j83-qjmr CVSS_V3

vLLM affected by RCE via auto_map dynamic module loading during model initialization

Published: 2026-01-21 Fixed in: 0.14.0

GHSA-3f6c-7fw2-ppm4 CVSS_V3

vLLM is vulnerable to Server-Side Request Forgery (SSRF) through `MediaConnector` class

Published: 2025-10-07 Fixed in: 0.11.0

GHSA-3mwp-wvh9-7528 CVSS_V3

vLLM: Unauthenticated OOM Denial of Service via Unbounded `n` Parameter in OpenAI API Server

Published: 2026-04-03 Fixed in: 0.19.0

GHSA-4qjh-9fv9-r85r CVSS_V3

Potential Timing Side-Channel Vulnerability in vLLM’s Chunk-Based Prefix Caching

Published: 2025-05-28 Fixed in: 0.9.0

GHSA-4r2x-xpjr-7cvv CVSS_V3

vLLM has RCE In Video Processing

Published: 2026-02-02 Fixed in: 0.14.1

GHSA-5vqr-wprc-cpp7 CVSS_V3

vLLM Deserialization of Untrusted Data vulnerability

Published: 2025-03-20 No fix available

GHSA-69j4-grxj-j64p CVSS_V3

vLLM vulnerable to DoS via large Chat Completion or Tokenization requests with specially crafted `chat_template_kwargs`

Published: 2025-11-20 Fixed in: 0.11.1

GHSA-6fvq-23cw-5628 CVSS_V3

vLLM: Resource-Exhaustion (DoS) through Malicious Jinja Template in OpenAI-Compatible Server

Published: 2025-10-07 Fixed in: 0.11.0

GHSA-6qc9-v4r8-22xg CVSS_V3

vLLM DOS: Remotely kill vllm over http with invalid JSON schema

Published: 2025-05-28 Fixed in: 0.9.0

GHSA-7972-pg2x-xr59 CVSS_V3

vLLM has Hardcoded Trust Override in Model Files Enables RCE Despite Explicit User Opt-Out

Published: 2026-03-27 Fixed in: 0.18.0

vLLM