{"data":{"id":"e1fd34b5-73a5-40b6-a1fe-74a6c9a504eb","title":"GHSA-q8gq-377p-jq3r: vLLM: Security Check Bypass via assert Statement in Activation Function Loading Allows Arbitrary Code Execution","summary":"vLLM has a security vulnerability where an `assert` statement (a line of code that checks a condition) used to restrict which activation functions can be loaded is removed when Python runs in optimized mode, allowing attackers to publish malicious models on HuggingFace that execute arbitrary code when loaded.","solution":"Replace the `assert` with an explicit conditional raise. The source provides this fix: `if not function_name.startswith(\"torch.nn.modules.\"): raise ValueError(\"Loading of activation functions is restricted to torch.nn.modules for security reasons\")`","labels":["security"],"sourceUrl":"https://github.com/advisories/GHSA-q8gq-377p-jq3r","publishedAt":"2026-06-16T17:34:49.000Z","cveId":"CVE-2026-41523","cweIds":null,"cvssScore":null,"cvssSeverity":"high","severity":"high","attackType":["supply_chain"],"issueType":"vulnerability","affectedPackages":["vllm@< 0.22.0 (fixed: 0.22.0)"],"affectedVendors":["HuggingFace"],"affectedVendorsRaw":["vLLM","HuggingFace","PyTorch"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":true,"disclosureDate":"2026-06-16T17:34:49.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"trivial","impactType":["integrity","confidentiality","availability"],"aiComponentTargeted":"framework","llmSpecific":false,"classifierConfidence":0.95,"researchCategory":null,"atlasIds":["AML.T0010"]}}