Unbounded Frame Count in video/jpeg Base64 Data URL Processing Leads to OOM DoS in vllm-project/vllm
CVE-2026-5497

7.5HIGH

Key Information:

Vendor: Vllm-project
Status: Vllm-project/vllm
Vendor: CVE Published:; 11 June 2026

🔔 Create Vllm-project Vulnerability Alert

What is CVE-2026-5497?

vLLM versions 0.8.0 and later are vulnerable to an Out-of-Memory (OOM) Denial of Service (DoS) attack due to unbounded frame count processing in the VideoMediaIO.load_base64() method. When processing video/jpeg data URLs, the method splits the base64 data string on commas to extract individual JPEG frames without enforcing a frame count limit. An attacker can exploit this by crafting a single API request containing thousands of comma-separated base64-encoded JPEG frames in a data URL, causing the server to decode all frames into memory and crash due to excessive memory consumption. This vulnerability is reachable via the OpenAI-compatible chat completions API and does not require authentication.

Affected Version(s)

vllm-project/vllm < 0.19.0

References

https://huntr.com/bounties/7bd92629-b396-4449-8f88-6c0092...

https://github.com/vllm-project/vllm/commit/58ee61422169c...

CVSS V3.0

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 11, 2026
Vulnerability Reserved
Apr 3, 2026

CVE-2026-5497 Data

JSON