{"data":{"id":"f858b34a-ab09-408b-a7be-8418c0bb4b10","title":"GHSA-94f4-hr76-p5j6: vLLM: OpenAI auth bypass","summary":"vLLM has an authentication bypass vulnerability in its OpenAI API protection. An attacker can craft a request with a specially crafted Host header (containing special characters like `/` or `?`) to trick the authentication check into looking at the wrong URL path, allowing them to use the API without providing the required `VLLM_API_KEY`. This only affects vLLM instances exposed directly to attackers; those behind a proper web server like nginx are protected.","solution":"N/A -- no mitigation discussed in source.","labels":["security"],"sourceUrl":"https://github.com/advisories/GHSA-94f4-hr76-p5j6","publishedAt":"2026-06-16T17:36:41.000Z","cveId":"CVE-2026-48746","cweIds":null,"cvssScore":null,"cvssSeverity":"critical","severity":"critical","attackType":["jailbreak"],"issueType":"vulnerability","affectedPackages":["vllm@>= 0.3.0, < 0.22.0 (fixed: 0.22.0)"],"affectedVendors":[],"affectedVendorsRaw":["vLLM"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":true,"disclosureDate":"2026-06-16T17:36:41.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"trivial","impactType":["integrity","confidentiality"],"aiComponentTargeted":"api","llmSpecific":true,"classifierConfidence":0.95,"researchCategory":null,"atlasIds":["AML.T0054"]}}