CVE-2025-32444 CRITICAL

CVE-2025-32444: vLLM Vulnerable to Remote Code Execution via Mooncake Integration

Vendor Vllm-Project
Product vllm
Weakness CWE-502 · Unsafe deserialization
Published April 30, 2025
Last update April 30, 2025

CVSS base score

10.0/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Versions starting from 0.6.5 and prior to 0.8.5, having vLLM integration with mooncake, are vulnerable to remote code execution due to using pickle based serialization over unsecured ZeroMQ sockets. The vulnerable sockets were set to listen on all network interfaces, increasing the likelihood that an attacker is able to reach the vulnerable ZeroMQ sockets to carry out an attack. vLLM instances that do not make use of the mooncake integration are not vulnerable. This issue has been patched in version 0.8.5.

Key dates

02Disclosure timeline

April 30, 2025 CVE published
April 30, 2025 Record updated