CVE-2026-33626

nvd nist nuclei

Published: Apr 20, 2026Modified: Apr 23, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: security-advisories@github.com (Secondary)

Description

LMDeploy is a toolkit for compressing, deploying, and serving large language models. Versions prior to 0.12.3 have a Server-Side Request Forgery (SSRF) vulnerability in LMDeploy's vision-language module. The `load_image()` function in `lmdeploy/vl/utils.py` fetches arbitrary URLs without validating internal/private IP addresses, allowing attackers to access cloud metadata services, internal networks, and sensitive resources. Version 0.12.3 patches the issue.

Affected (1)

Products: Internlm: Lmdeploy

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Internlm Lmdeploy	Before 0.12.3

Related CWEs

Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

References (5)

https://github.com/InternLM/lmdeploy/commit/71d64a339edb901e9005358e0633fbbab367d626

Source: security-advisories@github.com

Patch

https://github.com/InternLM/lmdeploy/pull/4447

Source: security-advisories@github.com

Issue TrackingPatch

https://github.com/InternLM/lmdeploy/releases/tag/v0.12.3

Source: security-advisories@github.com

Release Notes

https://github.com/InternLM/lmdeploy/security/advisories/GHSA-6w67-hwm5-92mq

Source: security-advisories@github.com

ExploitMitigationVendor Advisory

https://github.com/InternLM/lmdeploy/security/advisories/GHSA-6w67-hwm5-92mq

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

ExploitMitigationVendor Advisory

Timeline

No history available yet.