AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2025-1953: A vulnerability has been found in vLLM AIBrix 0.2.0 and classified as problematic. Affected by this vulnerability is an

lowvulnerabilityLLM-Specific

security

Source: NVD/CVE DatabaseMarch 4, 2025CVE-2025-1953

Summary

A vulnerability (CVE-2025-1953) was found in vLLM AIBrix 0.2.0 in the Prefix Caching component (a feature that speeds up AI model processing by reusing cached data) that produces insufficiently random values, potentially compromising security. The vulnerability is rated as low severity and difficult to exploit, but it affects the cryptographic security of the system.

Solution / Mitigation

Upgrade to vLLM AIBrix version 0.3.0, which addresses this issue.

Vulnerability Details

CVSS Score

2.6(low)

EPSS (30-day exploit probability)

EPSS: 0.1%

Classification

Attack SophisticationAdvanced

Impact (CIA+S)

integrity

AI Component TargetedInference

Taxonomy References

CWE (Weakness Type)

CWE-310 CWE-330

CAPEC (Attack Pattern)

CAPEC-20

Affected Vendors

Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-1953

First tracked: February 15, 2026 at 08:44 PM

Classified by LLM (prompt v3) · confidence: 85%