Igor Stepansky

**Name of the Vulnerable Software and Affected Versions** Kyverno versions 1.16.0 and later **Description** Kyverno is susceptible to Server-Side Request Forgery (SSRF) because of unrestricted Common Expression Language (CEL) HTTP functions. **Recommendations** Update to a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SGLang (affected versions not specified) **Description** The SGLang multimodal generation module is susceptible to unauthenticated remote code execution. This occurs through the ZMQ broker, which deserializes untrusted data using the `pickle.loads()` function without authentication. The `pickle.loads()` function is used to convert a byte stream into an object, and in this case, it processes data from an untrusted source, potentially allowing an attacker to execute arbitrary code on the system. The vulnerable component is the ZMQ broker. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SGLang versions (affected versions not specified) **Description** The SGLang encoder parallel disaggregation system is susceptible to unauthenticated remote code execution. This occurs through the disaggregation module, which uses `pickle.loads()` to deserialize untrusted data without authentication. The `pickle.loads()` function is used to convert a byte stream into an object. This can lead to arbitrary code execution if the input data is malicious. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.