How severe is CVE-2025-1953?

This vulnerability has a severity rating of LOW with a CVSS score of 2.6 out of 10.

What type of vulnerability is CVE-2025-1953?

This is classified as CWE-310, which is a common weakness in software security.

CVE-2025-1953 - LOW Severity | CVSS 2.6

Vulnerability Description

A vulnerability has been found in vLLM AIBrix 0.2.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file pkg/plugins/gateway/prefixcacheindexer/hash.go of the component Prefix Caching. The manipulation leads to insufficiently random values. The complexity of an attack is rather high. The exploitation appears to be difficult. Upgrading to version 0.3.0 is able to address this issue. It is recommended to upgrade the affected component.

Related Vulnerabilities

CVE-2016-4511

LOW

CVSS:2.8(Low)

ABB PCM600 before 2.7 uses an improper hash algorithm for the main application password, which makes it easier for local users to obtain sensitive cleartext information by leveraging read access to th...

CWE-3102016

CVE-2020-8173

LOW

CVSS:2.2(Low)

A too small set of random characters being used for encryption in Nextcloud Server 18.0.4 allowed decryption in shorter time than intended.

CWE-3102020

CVE-2016-7812

LOW

CVSS:3.1(Low)

The Bank of Tokyo-Mitsubishi UFJ, Ltd. App for Android ver5.3.1, ver5.2.2 and earlier allow a man-in-the-middle attacker to downgrade the communication between the app and the server from TLS v1.2 to ...

CWE-3102016

CVE-2025-3329

LOW

CVSS:3.1(Low)

A vulnerability classified as problematic has been found in Consumer Comanda Mobile up to 14.9.3.2/15.0.0.8. This affects an unknown part of the component Restaurant Order Handler. The manipulation of...

CWE-3102025

CVE-2025-2922

LOW

CVSS:2.0(Low)

A vulnerability classified as problematic was found in Netis WF-2404 1.1.124EN. Affected by this vulnerability is an unknown functionality of the component BusyBox Shell. The manipulation leads to cle...

CWE-3102025

CVE-2014-3566

LOW

CVSS:3.4(Low)

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padd...

CWE-3102014