CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

47 matches found

RedhatCVE•added 2026/05/26 8:14 p.m.•6 views

CVE-2026-5817

The vllm-metal inference backend in Docker Model Runner on macOS unconditionally sets trustremotecode=True when loading model tokenizers, and runs without sandboxing. This causes transformers.AutoTokenizer.frompretrained to import and execute arbitrary Python files included in any model pulled fr...

8.8CVSS6.5AI score0.0002EPSS

Exploits1References1

NVD•added 2026/05/22 8:16 p.m.•4 views

CVE-2026-5843

The MLX inference backend in Docker Model Runner on macOS uses the MLX-LM library, which unconditionally imports and executes arbitrary Python files from model directories via the modelfile configuration field in config.json. When a model's config.json specifies a modelfile pointing to a Python...

8.8CVSS0.0002EPSS

Exploits0References1

Cvelist•added 2026/05/22 7:28 p.m.•4 views

CVE-2026-5843 Docker Model Runner container-to-host code execution via MLX-LM model_file importlib loading

8.8CVSS0.0002EPSS

Exploits0References1

ATTACKERKB•added 2026/05/22 7:28 p.m.•5 views

CVE-2026-5843

8.8CVSS6.4AI score0.0002EPSS

Exploits0References2Affected Software1

CVE•added 2026/05/22 7:28 p.m.•42 views

CVE-2026-5843

The CVE describes a vulnerability in Docker Model Runner (macOS) where the MLX-LM backend unconditionally imports and executes arbitrary Python files specified by model_file in a model's config.json via importlib, without a trust_remote_code gate or sandboxing. This enables container-to-host arbi...

8.8CVSS6.4AI score0.0002EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/05/22 7:28 p.m.•5 views

CVE-2026-5843 Docker Model Runner container-to-host code execution via MLX-LM model_file importlib loading

8.8CVSS6.4AI score0.0002EPSS

Exploits0References1

EUVD•added 2026/05/22 7:28 p.m.•5 views

EUVD-2026-31491

8.8CVSS6.4AI score0.0002EPSS

Exploits0References1

ATTACKERKB•added 2026/05/22 7:24 p.m.•5 views

CVE-2026-5817

8.8CVSS6.5AI score0.0002EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2026/05/22 7:24 p.m.•3 views

CVE-2026-5817 Docker Model Runner container-to-host code execution via unsandboxed trust_remote_code in Python inference backends

8.8CVSS6.5AI score0.0002EPSS

Exploits1References1

EUVD•added 2026/05/22 7:24 p.m.•5 views

EUVD-2026-31493

8.8CVSS6.5AI score0.0002EPSS

Exploits1References1

Cvelist•added 2026/05/22 7:24 p.m.•4 views

CVE-2026-5817 Docker Model Runner container-to-host code execution via unsandboxed trust_remote_code in Python inference backends

8.8CVSS0.0002EPSS

Exploits1References1

CVE•added 2026/05/22 7:24 p.m.•13 views

CVE-2026-5817

CVE-2026-5817 affects the vllm-metal backend used by Docker Model Runner on macOS. The backend loads model tokenizers with trust_remote_code=True, causing transformers.AutoTokenizer.from_pretrained() to import and execute arbitrary Python files from models pulled from an OCI registry. This can en...

8.8CVSS6.5AI score0.0002EPSS

Exploits1References1Affected Software1

GithubExploit•added 2026/05/22 4:30 p.m.•56 views

Exploit for CVE-2026-5817

CVE-2026-5817: Docker Model Runner container-to-host RCE / Esc...

6.5AI score0.0002EPSS

Exploits1

CNNVD•added 2026/05/22 12:0 a.m.•3 views

Docker Model Runner 安全漏洞

Docker Model Runner is an open-source Docker model runner developed by Docker. Docker Model Runner vllm-metal contains a security vulnerability. This vulnerability arises from setting trustremotecode=True without any sandbox protection. It may allow arbitrary Python files to be executed during...

8.8CVSS6.3AI score0.0002EPSS

Exploits1References2

Positive Technologies•added 2026/05/22 12:0 a.m.•6 views

PT-2026-42831

Name of the Vulnerable Software and Affected Versions Docker Model Runner on macOS affected versions not specified Description The MLX inference backend uses the MLX-LM library, which imports and executes arbitrary Python files from model directories via the model file configuration field in the...

8.8CVSS6.3AI score0.0002EPSS

Exploits0References4

CNNVD•added 2026/05/22 12:0 a.m.•4 views

Docker Model Runner 安全漏洞

Docker Model Runner is an open-source Docker model runner developed by Docker. There is a security vulnerability in Docker Model Runner MLX. This vulnerability stems from the unconditional import and execution of any Python file in the model directory. It may allow malicious models to be pulled...

8.8CVSS6.2AI score0.0002EPSS

Exploits0References2

Positive Technologies•added 2026/05/22 12:0 a.m.•9 views

PT-2026-42830

Name of the Vulnerable Software and Affected Versions Docker Model Runner on macOS affected versions not specified Description The vllm-metal inference backend unconditionally sets trust remote code=True when loading model tokenizers and operates without sandboxing. This allows the...

8.8CVSS6.4AI score0.0002EPSS

Exploits1References5

SUSE CVE•added 2026/04/06 11:24 p.m.•2 views

SUSE CVE-2026-33990

Docker Model Runner DMR is software used to manage, run, and deploy AI models using Docker. Prior to version 1.1.25, Docker Model Runner contains an SSRF vulnerability in its OCI registry token exchange flow. When pulling a model, Model Runner follows the realm URL from the registry's...

9.1CVSS5.9AI score0.00032EPSS

Exploits0References3

Tenable Nessus•added 2026/04/03 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-33990

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Docker Model Runner DMR is software used to manage, run, and deploy AI models using Docker. Prior to version 1.1.25, Docker Model Runner contains an SSRF...

9.1CVSS5.8AI score0.00032EPSS

Exploits0References2