Lucene search
K

Exploit for Inclusion of Functionality from Untrusted Control Sphere in Hiyouga Llama-Factory

🗓️ 02 Jul 2026 07:06:16Reported by Hunt-BenitoType 
githubexploit
 githubexploit
🔗 github.com👁 12 Views

This PoC shows CVE-2026-58116: LLaMA-Factory WebUI RCE via trust_remote_code.

Related
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-58116
30 Jun 202612:54
attackerkb
Circl
CVE-2026-58116
30 Jun 202614:11
circl
CVE
CVE-2026-58116
30 Jun 202612:54
cve
Cvelist
CVE-2026-58116 LLaMA-Factory 0.9.5 Remote Code Execution via WebUI Model Path
30 Jun 202612:54
cvelist
EUVD
EUVD-2026-40311
30 Jun 202612:54
euvd
NVD
CVE-2026-58116
30 Jun 202613:19
nvd
Positive Technologies
PT-2026-53876
30 Jun 202600:00
ptsecurity
Vulnrichment
CVE-2026-58116 LLaMA-Factory 0.9.5 Remote Code Execution via WebUI Model Path
30 Jun 202612:54
vulnrichment

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

02 Jul 2026 07:07Current
6.2Medium risk
Vulners AI Score6.2
CVSS 3.18.8 - 9.8
CVSS 49.3
EPSS0.00515
SSVC
12