CVE-2026-7141 | vllm up to 0.19.0 KV Block kv_cache_interface.py has_mamba_layers uninitialized resource (Issue 39146)

A vulnerability identified as critical has been detected in vllm up to 0.19.0. The affected element is the function has_mamba_layers of the file vllm/v1/kv_cache_interface.py of the component KV Block Handler. Performing a manipulation results in uninitialized resource.

This vulnerability is cataloged as CVE-2026-7141. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

To fix this issue, it is recommended to deploy a patch.VulDB Recent EntriesRead More