VYPR
High severity8.8NVD Advisory· Published May 28, 2026· Updated May 29, 2026

CVE-2026-4944

CVE-2026-4944

Description

vllm-project/vllm version 0.14.1 contains a vulnerability where the trust_remote_code=True parameter is hardcoded in two model implementation files (vllm/model_executor/models/nemotron_vl.py and vllm/model_executor/models/kimi_k25.py). This bypasses the user's explicit --trust-remote-code=False setting, enabling remote code execution via malicious HuggingFace model repositories. This issue is an incomplete fix for CVE-2025-66448 and CVE-2026-22807, as it affects separate code paths in model implementation files. Deployments loading NemotronVL or KimiK25 models are particularly impacted.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Vllm/Vllminferred2 versions
    = 0.14.1+ 1 more
    • (no CPE)range: = 0.14.1
    • (no CPE)range: =0.14.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.