5 matches found
Arbitrary Code Injection
Overview sglang is a SGLang is a fast serving framework for large language models and vision language models. Affected versions of this package are vulnerable to Arbitrary Code Injection via the reranking endpoint when a model file containing a malicious tokenizer.chattemplate is loaded, due to...
EUVD-2026-23860
SGLang's reranking endpoint /v1/rerank achieves Remote Code Execution RCE when a model file containing a malcious tokenizer.chattemplate is loaded, as the Jinja2 chat templates are rendered using an unsandboxed jinja2.Environment...
CVE-2026-5760
SGLang's reranking endpoint /v1/rerank achieves Remote Code Execution RCE when a model file containing a malcious tokenizer.chattemplate is loaded, as the Jinja2 chat templates are rendered using an unsandboxed jinja2.Environment...
CVE-2026-5760 CVE-2026-5760
SGLang's reranking endpoint /v1/rerank achieves Remote Code Execution RCE when a model file containing a malcious tokenizer.chattemplate is loaded, as the Jinja2 chat templates are rendered using an unsandboxed jinja2.Environment...
CVE-2026-5760
Summary of CVE-2026-5760 (SGLang) : Affected: SGLang’s reranking endpoint at /v1/rerank. Root cause: rendering Jinja2 templates with an unsandboxed environment (jinja2.Environment) during processing of a malicious tokenizer.chat_template embedded in a GGUF model file. Impact: remote code executio...