CVE-2024-11041

{"id": "CVE-2024-11041", "cveTags": [], "metrics": {"cvssMetricV30": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2025-03-20T10:15:23.420", "references": [{"url": "https://huntr.com/bounties/00136195-11e0-4ad0-98d5-72db066e867f", "tags": ["Exploit", "Third Party Advisory"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-502"}]}], "descriptions": [{"lang": "en", "value": "vllm-project vllm version v0.6.2 contains a vulnerability in the MessageQueue.dequeue() API function. The function uses pickle.loads to parse received sockets directly, leading to a remote code execution vulnerability. An attacker can exploit this by sending a malicious payload to the MessageQueue, causing the victim's machine to execute arbitrary code."}, {"lang": "es", "value": "vllm-project vllm versi\u00f3n v0.6.2 contiene una vulnerabilidad en la funci\u00f3n de la API MessageQueue.dequeue(). Esta funci\u00f3n utiliza pickle.loads para analizar directamente los sockets recibidos, lo que genera una vulnerabilidad de ejecuci\u00f3n remota de c\u00f3digo. Un atacante puede explotar esto enviando un payload a MessageQueue, lo que provoca que el equipo de la v\u00edctima ejecute c\u00f3digo arbitrario."}], "lastModified": "2025-07-31T14:48:32.163", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vllm:vllm:0.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C723AC6-7D43-4776-B486-9F870A5645A6"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}