Red Hat Ai Inference Server
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Red Hat Ai Inference Server.
Recent Red Hat Ai Inference Server Security Advisories
| Advisory | Title | Published |
|---|---|---|
| RHSA-2026:4128 | (RHSA-2026:4128) Red Hat AI Inference Server Model Optimization Tools 3.2.2 (CUDA) | March 9, 2026 |
| RHSA-2026:3462 | (RHSA-2026:3462) Red Hat AI Inference Server 3.2.2 (ROCm) | February 27, 2026 |
| RHSA-2026:3461 | (RHSA-2026:3461) Red Hat AI Inference Server 3.2.2 (CUDA) | February 27, 2026 |
| RHSA-2025:23449 | (RHSA-2025:23449) Red Hat AI Inference Server 3.2.5 (ROCm) | December 17, 2025 |
| RHSA-2025:23209 | (RHSA-2025:23209) Red Hat AI Inference Server 3.2.5 (TPU) | December 15, 2025 |
| RHSA-2025:23205 | (RHSA-2025:23205) Red Hat AI Inference Server 3.2.5 (ROCm) | December 15, 2025 |
| RHSA-2025:23204 | (RHSA-2025:23204) Red Hat AI Inference Server 3.2.5 (CUDA) | December 15, 2025 |
| RHSA-2025:23202 | (RHSA-2025:23202) Red Hat AI Inference Server Model Optimization Tools 3.2.5 (CUDA) | December 15, 2025 |
| RHSA-2025:23080 | (RHSA-2025:23080) Red Hat AI Inference Server Model Optimization Tools 3.2.2 (CUDA) | December 10, 2025 |
| RHSA-2025:23079 | (RHSA-2025:23079) Red Hat AI Inference Server 3.2.2 (ROCm) | December 10, 2025 |
By the Year
In 2026 there have been 1 vulnerability in Red Hat Ai Inference Server with an average score of 6.3 out of ten. Last year, in 2025 Ai Inference Server had 4 security vulnerabilities published. At the current rates, it appears that the number of vulnerabilities last year and this year may equal out. Last year, the average CVE base score was greater by 1.03
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 1 | 6.30 |
| 2025 | 4 | 7.33 |
| 2024 | 4 | 6.45 |
It may take a day or so for new Ai Inference Server vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Red Hat Ai Inference Server Security Vulnerabilities
uv ZIP Parsing Flaw Enables Code Execution During Package Install
CVE-2025-13327
6.3 - Medium
- February 27, 2026
A flaw was found in uv. This vulnerability allows an attacker to execute malicious code during package resolution or installation via specially crafted ZIP (Zipped Information Package) archives that exploit parsing differentials, requiring user interaction to install an attacker-controlled package.
Improper Validation of Syntactic Correctness of Input
vLLM MediaConnector SSRF via load_from_url
CVE-2025-6242
7.1 - High
- October 07, 2025
A Server-Side Request Forgery (SSRF) vulnerability exists in the MediaConnector class within the vLLM project's multimodal feature set. The load_from_url and load_from_url_async methods fetch and process media from user-provided URLs without adequate restrictions on the target hosts. This allows an attacker to coerce the vLLM server into making arbitrary requests to internal network resources.
SSRF
Libtiff Write-What-Where via TIFF Height Field
CVE-2025-9900
8.8 - High
- September 23, 2025
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
Write-what-where Condition
Auth Bypass in ai-inference-server /invocations Endpoint
CVE-2025-6920
5.3 - Medium
- July 01, 2025
A flaw was found in the authentication enforcement mechanism of a model inference API in ai-inference-server. All /v1/* endpoints are expected to enforce API key validation. However, the POST /invocations endpoint failed to do so, resulting in an authentication bypass. This vulnerability allows unauthorized users to access the same inference features available on protected endpoints, potentially exposing sensitive functionality or allowing unintended access to backend resources.
Missing Authentication for Critical Function
OOB Read in libssh SFTP Handle (CVE-2025-5318)
CVE-2025-5318
8.1 - High
- June 24, 2025
A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in further processing. This vulnerability allows an authenticated remote attacker to potentially read unintended memory regions, exposing sensitive information or affect service behavior.
Out-of-bounds Read
OpenJPEG DoS via Malformed Image Loop
CVE-2023-39327
4.3 - Medium
- July 13, 2024
A flaw was found in OpenJPEG. Maliciously constructed pictures can cause the program to enter a large loop and continuously print warning messages on the terminal.
Resource Exhaustion
OpenJPEG Resource Exhaustion in opj_t1_decode_cblks Leading to DoS
CVE-2023-39329
6.5 - Medium
- July 13, 2024
A flaw was found in OpenJPEG. A resource exhaustion can occur in the opj_t1_decode_cblks function in tcd.c through a crafted image file, causing a denial of service.
Resource Exhaustion
libtiff OOM via TIFFRasterScanlineSize64 Triggering DoS
CVE-2023-52355
7.5 - High
- January 25, 2024
An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of service via a crafted input with a size smaller than 379 KB.
Memory Corruption
Heap Buffer Overflow in libtiff's TIFFReadRGBATileExt()
CVE-2023-52356
7.5 - High
- January 25, 2024
A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service.
Heap-based Buffer Overflow
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Red Hat Ai Inference Server or by Red Hat? Click the Watch button to subscribe.
