EUVD-2026-39110

MosaicML Composer Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MosaicML Composer. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2026-10043

Technical details are not publicly available in the provided documents. Monitor for updates.

ax-env (>=0.2.2 <=0.3.1), fb-sapp (>=0.5.3 <=0.5.4) +4 more potentially affected by CVE-2022-4899 via zstd (>=1.4.4.0 <=1.5.2.6)

zstd PYPI version =1.4.4.0, =0.2.2, =0.5.3, =0.0.1a0, =1.0.0, =1.3.0 Source cves: CVE-2022-4899 Source advisory: OSV:GHSA-5C9C-6X87-F9VM...

ax-env (>=0.2.2 <=0.3.1), fb-sapp (>=0.5.3 <=0.5.4) +4 more potentially affected by CVE-2022-4899 via zstd (>=1.4.4.0 <=1.5.2.6)

zstd PYPI version =1.4.4.0, =0.2.2, =0.5.3, =0.0.1a0, =1.0.0, =1.3.0 Source cves: CVE-2022-4899 Source advisory: OSV:PYSEC-2023-121...