Skip to content

CVE-2024-9053 vLLM allows Remote Code Execution by Pickle Deserialization via AsyncEngineRPCServer() RPC server entrypoints #19981

New issue
New issue
Open
Open
CVE-2024-9053 vLLM allows Remote Code Execution by Pickle Deserialization via AsyncEngineRPCServer() RPC server entrypoints#19981
Labels
suggestion-moduleNew module suggestions
@Admin9961

Description

@Admin9961
Admin9961
opened on Mar 22, 2025

vllm-project vllm version 0.6.0 contains a vulnerability in the AsyncEngineRPCServer() RPC server entrypoints. The core functionality run_server_loop() calls the function _make_handler_coro(), which directly uses cloudpickle.loads() on received messages without any sanitization. This can result in remote code execution by deserializing malicious pickle data.

Metadata

Metadata

Assignees

No one assigned

    Labels

    suggestion-moduleNew module suggestions

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions