Vulnerability Details CVE-2026-5497
vLLM versions 0.8.0 and later are vulnerable to an Out-of-Memory (OOM) Denial of Service (DoS) attack due to unbounded frame count processing in the `VideoMediaIO.load_base64()` method. When processing `video/jpeg` data URLs, the method splits the base64 data string on commas to extract individual JPEG frames without enforcing a frame count limit. An attacker can exploit this by crafting a single API request containing thousands of comma-separated base64-encoded JPEG frames in a data URL, causing the server to decode all frames into memory and crash due to excessive memory consumption. This vulnerability is reachable via the OpenAI-compatible chat completions API and does not require authentication.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 26.4%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2026-5497
-
cpe:2.3:a:vllm:vllm:0.10.0
-
cpe:2.3:a:vllm:vllm:0.10.1
-
cpe:2.3:a:vllm:vllm:0.10.1.1
-
cpe:2.3:a:vllm:vllm:0.10.2
-
cpe:2.3:a:vllm:vllm:0.11.0
-
cpe:2.3:a:vllm:vllm:0.11.1
-
cpe:2.3:a:vllm:vllm:0.11.2
-
cpe:2.3:a:vllm:vllm:0.12.0
-
cpe:2.3:a:vllm:vllm:0.13.0
-
cpe:2.3:a:vllm:vllm:0.14.0
-
cpe:2.3:a:vllm:vllm:0.14.1
-
cpe:2.3:a:vllm:vllm:0.15.0
-
cpe:2.3:a:vllm:vllm:0.15.1
-
cpe:2.3:a:vllm:vllm:0.15.2
-
cpe:2.3:a:vllm:vllm:0.16.0
-
cpe:2.3:a:vllm:vllm:0.16.1
-
cpe:2.3:a:vllm:vllm:0.17.0
-
cpe:2.3:a:vllm:vllm:0.17.1
-
cpe:2.3:a:vllm:vllm:0.17.2
-
cpe:2.3:a:vllm:vllm:0.18.0
-
cpe:2.3:a:vllm:vllm:0.18.1
-
cpe:2.3:a:vllm:vllm:0.18.2
-
cpe:2.3:a:vllm:vllm:0.8.0
-
cpe:2.3:a:vllm:vllm:0.8.1
-
cpe:2.3:a:vllm:vllm:0.8.2
-
cpe:2.3:a:vllm:vllm:0.8.3
-
cpe:2.3:a:vllm:vllm:0.8.4
-
cpe:2.3:a:vllm:vllm:0.8.5
-
cpe:2.3:a:vllm:vllm:0.9.0
-
cpe:2.3:a:vllm:vllm:0.9.0.1
-
cpe:2.3:a:vllm:vllm:0.9.1
-
cpe:2.3:a:vllm:vllm:0.9.2