CVE ID :CVE-2026-54232 Published : June 22, 2026, 10:16 p.m. | 4 hours, 53 minutes ago Description :vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.22.1, the vLLM Dockerfile is vulnerable to a dependency confusion attack through the flashinfer-jit-cache...

#Sicherheitslücke #Cloud #AI

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-54232 - vLLM: Dependency Confusion Vulnerability in vLLM Dockerfile

VERWANDTEARTIKEL

Splunk Enterprise anfällig für Datei­operationen ohne Authentifizierung

OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws

CVE-2026-11833 - FAST/TOOLS CI Server Information Disclosure

CVE-2026-48746 - vLLM: OpenAI auth bypass

CVE-2026-48109 - MessagePack-CSharp: LZ4 decompression may fail with AccessViolationException after dereferencing memory from bad input

CVE-2026-48502 - MessagePack-CSharp: Denial of service vulnerabilities can swamp the CPU or crash the process with stack and heap overflows

Splunk Enterprise anfällig für Dateioperationen ohne Authentifizierung