A flaw was found in the vLLM library. A completions API request with an empty prompt will crash the vLLM API server, resulting in a denial of service.
Metrics
Affected Vendors & Products
References
History
Tue, 17 Sep 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 17 Sep 2024 19:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
threat_severity
|
threat_severity
|
Tue, 17 Sep 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | No description is available for this CVE. | A flaw was found in the vLLM library. A completions API request with an empty prompt will crash the vLLM API server, resulting in a denial of service. |
Title | vllm: A completions API request with an empty prompt will crash the vllm API server. | Vllm: a completions api request with an empty prompt will crash the vllm api server. |
First Time appeared |
Redhat
Redhat enterprise Linux Ai |
|
CPEs | cpe:/a:redhat:enterprise_linux_ai:1 | |
Vendors & Products |
Redhat
Redhat enterprise Linux Ai |
|
References |
|
Tue, 17 Sep 2024 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-617 |
Fri, 13 Sep 2024 23:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | No description is available for this CVE. | |
Title | vllm: A completions API request with an empty prompt will crash the vllm API server. | |
References |
| |
Metrics |
threat_severity
|
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2024-09-17T16:20:42.399Z
Updated: 2024-12-24T03:24:04.409Z
Reserved: 2024-09-12T21:29:58.462Z
Link: CVE-2024-8768
Vulnrichment
Updated: 2024-09-17T18:21:51.376Z
NVD
Status : Awaiting Analysis
Published: 2024-09-17T17:15:11.100
Modified: 2024-09-20T12:30:51.220
Link: CVE-2024-8768
Redhat