Denial of Service Vulnerability in vLLM by VLLM Project
CVE-2025-29770

6.5MEDIUM

Key Information:

Vendor

Vllm-project

Status
Vllm
Vendor
CVE Published:
19 March 2025

What is CVE-2025-29770?

The vLLM high-throughput inference engine features a cache for compiled grammars utilized by its outlines library. This cache, enabled by default, is susceptible to abuse by malicious users who can exploit the system by sending numerous short decoding requests with unique schemas. Each request adds to the cache, potentially leading to a Denial of Service if the filesystem capacity is exceeded. This issue arises despite vLLM's default configuration, which may not use the outlines backend, as it can still be selected on a request basis. A fix is implemented in version 0.8.0.

Affected Version(s)

vllm < 0.8.0

References

https://github.com/vllm-project/vllm/security/advisories/...
x_refsource_CONFIRM
https://github.com/vllm-project/vllm/pull/14837
x_refsource_MISC
https://github.com/vllm-project/vllm/blob/53be4a863486d02...
x_refsource_MISC

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.