AIKIDO-2025-10056
vllm is vulnerable to Unsafe Deserialization
75
High
vllm Python
AIKIDO-2025-10056: vllm is vulnerable to Unsafe Deserialization in versions 0.3.0 - 0.6.6.
Unsafe Deserialization
Vuln in 0.3.0 - 0.6.6
Fixed in 0.7.0
CVE-2025-24357
TL;DR
Who does this affect?
How can it be fixed?
Background info
Donโt be left in the dark
With in-house intel and access to top vulnerability databases, see it all with Aikido.
ยฉ 2024 Aikido Security BV | BE0792914919
๐ช๐บ Registered address: Coupure Rechts 88, 9000, Ghent, Belgium
๐ช๐บ Office address: Gebroeders van Eyckstraat 2, 9000, Ghent, Belgium
๐บ๐ธ Office address: 95 Third St, 2nd Fl, San Francisco, CA 94103, US
Any use of the intel.aikido.dev website and content is explicitly subject to Aikido Terms of Use.
The Intel vulnerability and malware feed is licensed under a dual license.