Vulnerability in Vllm-project Vllm

CVE-2026-55574

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Prior to 0.24.0, the structured_outputs.regex API parameter passes a user-supplied regular expression string directly to the grammar compiler backends wi…

Vulnerability class: ReDoS (Regular Expression Denial of Service)

Affected products

Weakness classification (CWE)

References