CVE-2024-11041
Remote Code Execution in vllm-project/vllm
In short
A vulnerability in vllm v0.6.2 allows attackers to execute arbitrary code on a server by sending a specially crafted message. The application unsafely deserializes untrusted data, giving attackers complete control over the affected system.
Technical detail
The MessageQueue.dequeue() function uses pickle.loads() on untrusted socket data without validation, enabling object injection attacks. An attacker with network access to the MessageQueue can send a malicious serialized payload that executes arbitrary code during deserialization with the privileges of the vllm process.
Summary generated and translated by AI from the official description.
vllm-project vllm version v0.6.2 contains a vulnerability in the MessageQueue.dequeue() API function. The function uses pickle.loads to parse received sockets directly, leading to a remote code execution vulnerability. An attacker can exploit this by sending a malicious payload to the MessageQueue, causing the victim's machine to execute arbitrary code.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
vllm-project · vllm-project/vllmWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →