CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-44222

vLLM is an inference and serving engine for large language models (LLMs). From 0.6.1 to before 0.20.0, there is a a Token Injection vulnerability in vLLM’s multimodal processing. Unauthenticated, text-only prompts that spell special tokens are interpreted as control. Image and video placeholder sequences supplied without matching data cause vLLM to index into empty grids during input-position computation, raising an unhandled IndexError and terminating the worker or degrading availability. Multimodal paths that rely on image_grid_thw/video_grid_thw are affected. This vulnerability is fixed in 0.20.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.9%

CVSS Severity

CVSS v3 Score 6.5

References

Products affected by CVE-2026-44222

Vllm » Vllm » Version: 0.10.0

cpe:2.3:a:vllm:vllm:0.10.0
Vllm » Vllm » Version: 0.10.1

cpe:2.3:a:vllm:vllm:0.10.1
Vllm » Vllm » Version: 0.10.1.1

cpe:2.3:a:vllm:vllm:0.10.1.1
Vllm » Vllm » Version: 0.10.2

cpe:2.3:a:vllm:vllm:0.10.2
Vllm » Vllm » Version: 0.11.0

cpe:2.3:a:vllm:vllm:0.11.0
Vllm » Vllm » Version: 0.11.1

cpe:2.3:a:vllm:vllm:0.11.1
Vllm » Vllm » Version: 0.11.2

cpe:2.3:a:vllm:vllm:0.11.2
Vllm » Vllm » Version: 0.12.0

cpe:2.3:a:vllm:vllm:0.12.0
Vllm » Vllm » Version: 0.13.0

cpe:2.3:a:vllm:vllm:0.13.0
Vllm » Vllm » Version: 0.14.0

cpe:2.3:a:vllm:vllm:0.14.0
Vllm » Vllm » Version: 0.14.1

cpe:2.3:a:vllm:vllm:0.14.1
Vllm » Vllm » Version: 0.15.0

cpe:2.3:a:vllm:vllm:0.15.0
Vllm » Vllm » Version: 0.15.1

cpe:2.3:a:vllm:vllm:0.15.1
Vllm » Vllm » Version: 0.15.2

cpe:2.3:a:vllm:vllm:0.15.2
Vllm » Vllm » Version: 0.16.0

cpe:2.3:a:vllm:vllm:0.16.0
Vllm » Vllm » Version: 0.16.1

cpe:2.3:a:vllm:vllm:0.16.1
Vllm » Vllm » Version: 0.17.0

cpe:2.3:a:vllm:vllm:0.17.0
Vllm » Vllm » Version: 0.17.1

cpe:2.3:a:vllm:vllm:0.17.1
Vllm » Vllm » Version: 0.17.2

cpe:2.3:a:vllm:vllm:0.17.2
Vllm » Vllm » Version: 0.18.0

cpe:2.3:a:vllm:vllm:0.18.0
Vllm » Vllm » Version: 0.18.1

cpe:2.3:a:vllm:vllm:0.18.1
Vllm » Vllm » Version: 0.18.2

cpe:2.3:a:vllm:vllm:0.18.2
Vllm » Vllm » Version: 0.19.0

cpe:2.3:a:vllm:vllm:0.19.0
Vllm » Vllm » Version: 0.19.1

cpe:2.3:a:vllm:vllm:0.19.1
Vllm » Vllm » Version: 0.19.2

cpe:2.3:a:vllm:vllm:0.19.2
Vllm » Vllm » Version: 0.6.1

cpe:2.3:a:vllm:vllm:0.6.1
Vllm » Vllm » Version: 0.6.2

cpe:2.3:a:vllm:vllm:0.6.2
Vllm » Vllm » Version: 0.6.3

cpe:2.3:a:vllm:vllm:0.6.3
Vllm » Vllm » Version: 0.6.4

cpe:2.3:a:vllm:vllm:0.6.4
Vllm » Vllm » Version: 0.6.5

cpe:2.3:a:vllm:vllm:0.6.5
Vllm » Vllm » Version: 0.6.6

cpe:2.3:a:vllm:vllm:0.6.6
Vllm » Vllm » Version: 0.7.0

cpe:2.3:a:vllm:vllm:0.7.0
Vllm » Vllm » Version: 0.7.1

cpe:2.3:a:vllm:vllm:0.7.1
Vllm » Vllm » Version: 0.7.2

cpe:2.3:a:vllm:vllm:0.7.2
Vllm » Vllm » Version: 0.7.3

cpe:2.3:a:vllm:vllm:0.7.3
Vllm » Vllm » Version: 0.8.0

cpe:2.3:a:vllm:vllm:0.8.0
Vllm » Vllm » Version: 0.8.1

cpe:2.3:a:vllm:vllm:0.8.1
Vllm » Vllm » Version: 0.8.2

cpe:2.3:a:vllm:vllm:0.8.2
Vllm » Vllm » Version: 0.8.3

cpe:2.3:a:vllm:vllm:0.8.3
Vllm » Vllm » Version: 0.8.4

cpe:2.3:a:vllm:vllm:0.8.4
Vllm » Vllm » Version: 0.8.5

cpe:2.3:a:vllm:vllm:0.8.5
Vllm » Vllm » Version: 0.9.0

cpe:2.3:a:vllm:vllm:0.9.0
Vllm » Vllm » Version: 0.9.0.1

cpe:2.3:a:vllm:vllm:0.9.0.1
Vllm » Vllm » Version: 0.9.1

cpe:2.3:a:vllm:vllm:0.9.1
Vllm » Vllm » Version: 0.9.2

cpe:2.3:a:vllm:vllm:0.9.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-44222

Products

Pricing

Contact Us