PT-2026-41668 · Sglang · Sglang
Published
2026-05-18
·
Updated
2026-05-19
·
CVE-2026-7301
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SGLangs (affected versions not specified)
Description
The multimodal generation runtime scheduler's ROUTER socket binds to 0.0.0.0 by default. It contains a sink that calls the
pickle.loads() function on incoming messages, which can lead to remote code execution when the system is exposed to the internet. Pickle is a Python module used for serializing and deserializing objects.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Deserialization of Untrusted Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sglang