CVE ID :CVE-2026-48746 Published : June 22, 2026, 9:57 p.m. | 5 hours, 13 minutes ago Description :vLLM is an inference and serving engine for large language models (LLMs). From 0.3.0 until 0.22.0, a vulnerability in ASGI web servers and starlette's trust on those web servers enables an...

#Sicherheitslücke #AI

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-48746 - vLLM: OpenAI auth bypass

VERWANDTEARTIKEL

Splunk Enterprise anfällig für Datei­operationen ohne Authentifizierung

OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws

CVE-2026-11833 - FAST/TOOLS CI Server Information Disclosure

CVE-2026-54232 - vLLM: Dependency Confusion Vulnerability in vLLM Dockerfile

CVE-2026-48109 - MessagePack-CSharp: LZ4 decompression may fail with AccessViolationException after dereferencing memory from bad input

CVE-2026-48502 - MessagePack-CSharp: Denial of service vulnerabilities can swamp the CPU or crash the process with stack and heap overflows

Splunk Enterprise anfällig für Dateioperationen ohne Authentifizierung