Hliu Large Language And Vision Assistant — known CVE vulnerabilities
Every CVE whose affected-product data names Hliu Large Language And Vision Assistant, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-11449 — CVSS 7.5 (high): A vulnerability in haotian-liu/llava version 1.2.0 (LLaVA-1.6) allows for Server-Side Request Forgery (SSRF) through the /run/predict…
CVE-2024-12070 — CVSS 7.5 (high): A Denial of Service (DoS) vulnerability exists in the file upload feature of haotian-liu/llava, specifically in Release v1.2.0 (LLaVA-1.6)…
CVE-2024-9311 — CVSS 6.1 (medium): A Cross-Site Request Forgery (CSRF) vulnerability in haotian-liu/llava v1.2.0 (LLaVA-1.6) allows an attacker to upload files with malicious…