Skip to main content

GPUStack EUVDEUVD-2026-44750

| CVE-2026-58658 HIGH
Missing Authentication for Critical Function (CWE-306)
2026-07-15 VulnCheck GHSA-26wv-hf3j-hjjh
8.8
CVSS 4.0 · Vendor: VulnCheck
Share

Severity by source

Vendor (VulnCheck) PRIMARY
8.8 HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
8.2 HIGH

Network-reachable worker endpoints with no auth (PR:N) and no interaction give AC:L; high confidentiality from leaked prompts/logs, low integrity from config changes, no availability impact.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (VulnCheck).

CVSS VectorVendor: VulnCheck

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

3
Source Code Evidence Fetched
Jul 15, 2026 - 17:45 vuln.today
Analysis Generated
Jul 15, 2026 - 17:45 vuln.today
CVE Published
Jul 15, 2026 - 17:00 cve.org
HIGH 8.8

DescriptionCVE.org

GPUStack through 2.2.1, fixed in commit 4e20551, contains an unauthenticated information disclosure vulnerability that allows unauthenticated attackers to access sensitive inference logs and modify worker configuration by exploiting unprotected /serveLogs and /debug endpoints on the worker port. Attackers can enumerate model instance IDs to stream serving logs containing prompts and completions, change log levels, and read memory profiling data without any authentication.

AnalysisAI

Unauthenticated information disclosure in GPUStack through version 2.2.1 lets remote attackers reach the worker port's unprotected /serveLogs and /debug endpoints to stream live inference logs - including user prompts and model completions - and to alter worker runtime configuration such as log levels and memory profiling output. Because the flaw is missing authentication (CWE-306) on network-exposed endpoints, exploitation requires no credentials and no user interaction; publicly available exploit code exists, though the issue is not listed in CISA KEV. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Reach worker port (default 10150)
Delivery
Query unauthenticated /serveLogs endpoint
Exploit
Enumerate model instance IDs
Execution
Stream serving logs with prompts/completions
Persist
Alter log level via /debug
Impact
Exfiltrate sensitive inference data

Vulnerability AssessmentAI

Exploitation Exploitation requires only network reachability to the GPUStack worker's listening port (default 10150) where the unprotected /serveLogs and /debug endpoints are served - no authentication, no user interaction, and no special GPUStack configuration are needed, matching PR:N/UI:N/AC:L. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The supplied CVSS 4.0 vector (AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L, score 8.8) describes a genuinely low-barrier attack: network-reachable, low complexity, no privileges, no interaction, with high confidentiality impact and limited integrity impact from configuration tampering. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who can reach a GPUStack worker's port (e.g. an exposed 10150 on an internal or cloud network) queries the unauthenticated /serveLogs endpoint, enumerates model instance IDs, and streams live serving logs to harvest user prompts and model completions. …
Remediation Upstream fix available (commit 4e20551); the released patched version number is not independently confirmed from the provided data, so upgrade to a GPUStack build that includes commit 4e20551b5aaf76f93a8769d32b7fef999e22a4d3, which adds worker_request_auth to both the /debug and logs routers. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours, inventory all GPUStack deployments and identify systems running version 2.2.1 or earlier, noting which have worker ports reachable from untrusted networks or the internet. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-44750 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy