Description
A vulnerability was found in vllm up to 0.19.0. The affected element is the function has_mamba_layers of the file vllm/v1/kv_cache_interface.py of the component KV Block Handler. Performing a manipulation results in uninitialized resource. It is possible to initiate the attack remotely. The attack is considered to have high complexity. The exploitability is described as difficult. The exploit has been made public and could be used. The patch is named 1ad67864c0c20f167929e64c875f5c28e1aad9fd. To fix this issue, it is recommended to deploy a patch.
Published: 2026-04-27
Score: 6.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Uninitialized resource allowing remote exploitation
Action: Apply Patch
AI Analysis

Impact

An uninitialized resource vulnerability exists in the has_mamba_layers function of the KV Block kv_cache_interface module in vllm (versions up to 0.19.0). By manipulating the input that feeds this function, an attacker can trigger an uninitialized memory state. The vulnerability can be reached remotely and may lead to undefined behavior such as a crash or potential remote code execution, depending on the environment. The CVSS score of 6.3 indicates moderate severity, and the exploit is described as high complexity and difficult.

Affected Systems

The issue affects the open‑source vllm project for all releases prior to 0.19.1. The affected component is the KV Block KV Cache Handler located in vllm/v1/kv_cache_interface.py. Systems running 0.19.0 or earlier are therefore vulnerable; newer versions contain the fix.

Risk and Exploitability

The risk is moderate due to the CVSS score of 6.3, and the availability of a public exploit combined with high complexity suggests a low‑to‑moderate likelihood of exploitation in the wild. Because the vulnerability is not listed in the CISA KEV catalog and EPSS data is missing, the exact probability is uncertain. Nonetheless, attackers could leverage remote input to trigger the uninitialized state, which may compromise integrity or availability.

Generated by OpenCVE AI on April 28, 2026 at 04:16 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade vllm to the patched version (commit 1ad67864c0c20f167929e64c875f5c28e1aad9fd) or a later release that contains the fix.
  • If an immediate upgrade is not possible, restrict or disable the remote KV block handler interface so that it can only be accessed from trusted IPs or by authenticated users.
  • Audit any custom code that calls has_mamba_layers to ensure all resources are fully initialized before use and monitor logs for abnormal cache errors that may indicate exploitation attempts.

Generated by OpenCVE AI on April 28, 2026 at 04:16 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-x368-4g9h-fvv4 vLLM makes Use of Uninitialized Resource
History

Tue, 28 Apr 2026 12:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Moderate

Mon, 27 Apr 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 27 Apr 2026 17:15:00 +0000

Type Values Removed Values Added
Description A vulnerability was found in vllm up to 0.19.0. The affected element is the function has_mamba_layers of the file vllm/v1/kv_cache_interface.py of the component KV Block Handler. Performing a manipulation results in uninitialized resource. It is possible to initiate the attack remotely. The attack is considered to have high complexity. The exploitability is described as difficult. The exploit has been made public and could be used. The patch is named 1ad67864c0c20f167929e64c875f5c28e1aad9fd. To fix this issue, it is recommended to deploy a patch.
Title vllm KV Block kv_cache_interface.py has_mamba_layers uninitialized resource
First Time appeared Vllm
Vllm vllm
Weaknesses CWE-908
CPEs cpe:2.3:a:vllm:vllm:*:*:*:*:*:*:*:*
Vendors & Products Vllm
Vllm vllm
References
Metrics cvssV2_0

{'score': 5.1, 'vector': 'AV:N/AC:H/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C'}

cvssV3_0

{'score': 5.6, 'vector': 'CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C'}

cvssV3_1

{'score': 5.6, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C'}

cvssV4_0

{'score': 6.3, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Vllm Vllm
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-04-27T17:41:17.930Z

Reserved: 2026-04-26T19:38:00.529Z

Link: CVE-2026-7141

cve-icon Vulnrichment

Updated: 2026-04-27T17:41:14.509Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-27T17:16:45.637

Modified: 2026-05-01T20:30:23.910

Link: CVE-2026-7141

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-04-27T16:45:12Z

Links: CVE-2026-7141 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T04:30:21Z

Weaknesses