CVE-2025-48943

Description

vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 up to but excluding 0.9.0 have a Denial of Service (ReDoS) that causes the vLLM server to crash if an invalid regex was provided while using structured output. This vulnerability is similar to GHSA-6qc9-v4r8-22xg/CVE-2025-48942, but for regex instead of a JSON schema. Version 0.9.0 fixes the issue.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Affected products

vllm-project / vllm>= 0.8.0, < 0.9.0 – >= 0.8.0, < 0.9.0

References

VENDOR_ADVISORYhttps://github.com/vllm-project/vllm/security/advisories/GHSA-9hcf-v7m4-6m2j
MISChttps://github.com/vllm-project/vllm/issues/17313
PATCHhttps://github.com/vllm-project/vllm/pull/17623
PATCHhttps://github.com/vllm-project/vllm/commit/08bf7840780980c7568c573c70a6a8db94fd45ff