pkg:PyPI/lmdeploy

6 total CVEsHIGH4MEDIUM2

✅ Check your installed version

All known vulnerabilities

  • HIGH8.8CVE-2025-67729lmdeploy vulnerable to Arbitrary Code Execution via Insecure Deserialization in torch.load()
    from 0, < 0.11.1
  • HIGH7.8CVE-2026-46517lmdeploy: Hardcoded trust_remote_code=True is an implicit unsafe remote-code load path with no user opt-out
    from 0, <= 0.12.3
  • HIGH7.8CVE-2026-46432LMDeploy: Arbitrary code execution via hardcoded trust_remote_code=True in lmdeploy model initialization
    from 0, < 0.13.0
  • HIGH7.5CVE-2026-33626LMDeploy has Server-Side Request Forgery (SSRF) via Vision-Language Image Loading
    from 0, <= 0.12.2
  • MEDIUM5.3CVE-2025-3163InternLM LMDeploy code injection vulnerability
    from 0, <= 0.7.1
  • MEDIUM5.3CVE-2025-3162LMDeploy Improper Input Validation Vulnerability
    from 0, <= 0.7.1