{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T05:43:39.794","vulnerabilities":[{"cve":{"id":"CVE-2025-55178","sourceIdentifier":"cve-assign@fb.com","published":"2025-09-24T19:15:36.467","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Llama Stack prior to version v0.2.20 accepted unverified parameters in the resolve_ast_by_type function which could potentially allow for remote code execution."},{"lang":"es","value":"Llama Stack anterior a la versión v0.2.20 aceptaba parámetros no verificados en la función resolve_ast_by_type, lo que potencialmente podría permitir la ejecución remota de código."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"references":[{"url":"https://github.com/llamastack/llama-stack/pull/3281","source":"cve-assign@fb.com"},{"url":"https://github.com/llamastack/llama-stack/releases/tag/v0.2.20","source":"cve-assign@fb.com"},{"url":"https://www.facebook.com/security/advisories/cve-2025-55178","source":"cve-assign@fb.com"}]}}]}