Remote Code Execution Vulnerability in vllm Project v0.6.0
CVE-2024-9053

9.8CRITICAL

Key Information:

Vendor: Vllm-project
Status: Vllm-project/vllm
Vendor: CVE Published:; 20 March 2025

🔔 Create Vllm-project Vulnerability Alert

What is CVE-2024-9053?

The vllm version 0.6.0 is vulnerable due to its AsyncEngineRPCServer() RPC server entrypoints that improperly handle deserialization of messages. Specifically, the run_server_loop() function calls _make_handler_coro(), which uses cloudpickle.loads() on received data without proper sanitization. This oversight could allow attackers to execute arbitrary code by sending maliciously crafted pickle data.

Affected Version(s)

vllm-project/vllm <= unspecified

References

https://huntr.com/bounties/75a544f3-34a3-4da0-b5a3-1495cb...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

CVSS V3.0

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 20, 2025
Vulnerability Reserved
Sep 20, 2024