Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-u659-sd9h-tkf3
SummaryvLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. When vLLM is configured to use Mooncake, unsafe deserialization exposed directly over ZMQ/TCP on all network interfaces will allow attackers to execute remote code on distributed hosts. This is a remote code execution vulnerability impacting any deployments using Mooncake to distribute KV across distributed hosts. This vulnerability is fixed in 0.8.0.
Aliases
0
alias CVE-2025-29783
1
alias GHSA-x3m8-f7g5-qhm7
2
alias PYSEC-2025-63
Fixed_packages
0
url pkg:pypi/vllm@0.8.0
purl pkg:pypi/vllm@0.8.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5ec1-1h6d-tuaq
1
vulnerability VCID-e8w2-9rwg-u7ba
2
vulnerability VCID-fxgs-s1vm-8bez
3
vulnerability VCID-nctw-rz8h-f3af
4
vulnerability VCID-qake-z4ec-wkdu
5
vulnerability VCID-svzy-7pke-2bdr
6
vulnerability VCID-ugds-eqgw-fbbz
7
vulnerability VCID-za3a-c9m1-jqgz
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/vllm@0.8.0
Affected_packages
0
url pkg:pypi/vllm@0.6.5
purl pkg:pypi/vllm@0.6.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-737m-tpkz-qffm
1
vulnerability VCID-e8w2-9rwg-u7ba
2
vulnerability VCID-fxgs-s1vm-8bez
3
vulnerability VCID-k1qz-xe9c-2bg3
4
vulnerability VCID-nctw-rz8h-f3af
5
vulnerability VCID-svzy-7pke-2bdr
6
vulnerability VCID-u659-sd9h-tkf3
7
vulnerability VCID-ugds-eqgw-fbbz
8
vulnerability VCID-w9kt-yaqy-47fb
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/vllm@0.6.5
1
url pkg:pypi/vllm@0.6.6
purl pkg:pypi/vllm@0.6.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-737m-tpkz-qffm
1
vulnerability VCID-e8w2-9rwg-u7ba
2
vulnerability VCID-fxgs-s1vm-8bez
3
vulnerability VCID-k1qz-xe9c-2bg3
4
vulnerability VCID-nctw-rz8h-f3af
5
vulnerability VCID-svzy-7pke-2bdr
6
vulnerability VCID-u659-sd9h-tkf3
7
vulnerability VCID-ugds-eqgw-fbbz
8
vulnerability VCID-w9kt-yaqy-47fb
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/vllm@0.6.6
2
url pkg:pypi/vllm@0.6.6.post1
purl pkg:pypi/vllm@0.6.6.post1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-737m-tpkz-qffm
1
vulnerability VCID-e8w2-9rwg-u7ba
2
vulnerability VCID-fxgs-s1vm-8bez
3
vulnerability VCID-k1qz-xe9c-2bg3
4
vulnerability VCID-nctw-rz8h-f3af
5
vulnerability VCID-svzy-7pke-2bdr
6
vulnerability VCID-u659-sd9h-tkf3
7
vulnerability VCID-ugds-eqgw-fbbz
8
vulnerability VCID-w9kt-yaqy-47fb
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/vllm@0.6.6.post1
3
url pkg:pypi/vllm@0.7.0
purl pkg:pypi/vllm@0.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-737m-tpkz-qffm
1
vulnerability VCID-e8w2-9rwg-u7ba
2
vulnerability VCID-fxgs-s1vm-8bez
3
vulnerability VCID-k1qz-xe9c-2bg3
4
vulnerability VCID-nctw-rz8h-f3af
5
vulnerability VCID-svzy-7pke-2bdr
6
vulnerability VCID-u659-sd9h-tkf3
7
vulnerability VCID-ugds-eqgw-fbbz
8
vulnerability VCID-za3a-c9m1-jqgz
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/vllm@0.7.0
4
url pkg:pypi/vllm@0.7.1
purl pkg:pypi/vllm@0.7.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-737m-tpkz-qffm
1
vulnerability VCID-e8w2-9rwg-u7ba
2
vulnerability VCID-fxgs-s1vm-8bez
3
vulnerability VCID-k1qz-xe9c-2bg3
4
vulnerability VCID-nctw-rz8h-f3af
5
vulnerability VCID-svzy-7pke-2bdr
6
vulnerability VCID-u659-sd9h-tkf3
7
vulnerability VCID-ugds-eqgw-fbbz
8
vulnerability VCID-za3a-c9m1-jqgz
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/vllm@0.7.1
5
url pkg:pypi/vllm@0.7.2
purl pkg:pypi/vllm@0.7.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-e8w2-9rwg-u7ba
1
vulnerability VCID-fxgs-s1vm-8bez
2
vulnerability VCID-k1qz-xe9c-2bg3
3
vulnerability VCID-nctw-rz8h-f3af
4
vulnerability VCID-svzy-7pke-2bdr
5
vulnerability VCID-u659-sd9h-tkf3
6
vulnerability VCID-ugds-eqgw-fbbz
7
vulnerability VCID-za3a-c9m1-jqgz
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/vllm@0.7.2
6
url pkg:pypi/vllm@0.7.3
purl pkg:pypi/vllm@0.7.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-e8w2-9rwg-u7ba
1
vulnerability VCID-fxgs-s1vm-8bez
2
vulnerability VCID-k1qz-xe9c-2bg3
3
vulnerability VCID-nctw-rz8h-f3af
4
vulnerability VCID-svzy-7pke-2bdr
5
vulnerability VCID-u659-sd9h-tkf3
6
vulnerability VCID-ugds-eqgw-fbbz
7
vulnerability VCID-za3a-c9m1-jqgz
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/vllm@0.7.3
References
0
reference_url https://github.com/vllm-project/vllm/commit/288ca110f68d23909728627d3100e5a8db820aa2
reference_id
reference_type
scores
url https://github.com/vllm-project/vllm/commit/288ca110f68d23909728627d3100e5a8db820aa2
1
reference_url https://github.com/vllm-project/vllm/pull/14228
reference_id
reference_type
scores
url https://github.com/vllm-project/vllm/pull/14228
2
reference_url https://github.com/vllm-project/vllm/security/advisories/GHSA-x3m8-f7g5-qhm7
reference_id
reference_type
scores
url https://github.com/vllm-project/vllm/security/advisories/GHSA-x3m8-f7g5-qhm7
Weaknesses
Exploits
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-u659-sd9h-tkf3