PYSEC-2025-63

See a problem?

Import Source

https://github.com/pypa/advisory-database/blob/main/vulns/vllm/PYSEC-2025-63.yaml

JSON Data

https://api.osv.dev/v1/vulns/PYSEC-2025-63

Aliases

Published

2025-03-19T16:15:32Z

Modified

2025-07-01T23:59:56.271533Z

Summary

[none]

Details

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. When vLLM is configured to use Mooncake, unsafe deserialization exposed directly over ZMQ/TCP on all network interfaces will allow attackers to execute remote code on distributed hosts. This is a remote code execution vulnerability impacting any deployments using Mooncake to distribute KV across distributed hosts. This vulnerability is fixed in 0.8.0.

References

Affected packages

PyPI / vllm

Package

Name: vllm; View open source insights on deps.dev
Purl: pkg:pypi/vllm

Affected ranges

Type: GIT
Repo: https://github.com/vllm-project/vllm
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

288ca110f68d23909728627d3100e5a8db820aa2

Type: ECOSYSTEM
Events: Introduced

0.6.5

Fixed

0.8.0

Affected versions

0.*

0.6.5

0.6.6

0.6.6.post1

0.7.0

0.7.1

0.7.2

0.7.3