Security Advisory

CVE-2024-10225

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-20 10:08:54

Last updated 2025-10-15 12:49:22

Assigner @huntr_ai

State PUBLISHED

Description

A vulnerability in haotian-liu/llava v1.2.0 allows an attacker to cause a Denial of Service (DoS) by appending a large number of characters to the end of a multipart boundary in a file upload request. This causes the server to continuously process each character, rendering the application inaccessible.

← Browse all CVEs View on cve.org ↗