CVE-2026-6859

Name of the Vulnerable Software and Affected Versions InstructLab (affected versions not specified)

Description A flaw exists in the linux train.py script which hardcodes the trust remote code variable as True when loading models from HuggingFace. This allows a remote attacker to achieve arbitrary Python code execution if a user is convinced to run the ilab train/download/generate command using a specially crafted malicious model from the HuggingFace Hub, potentially leading to complete system compromise.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.