4 matches found
EUVD-2026-23860
SGLang's reranking endpoint /v1/rerank achieves Remote Code Execution RCE when a model file containing a malcious tokenizer.chattemplate is loaded, as the Jinja2 chat templates are rendered using an unsandboxed jinja2.Environment...
CVE-2026-5760 CVE-2026-5760
SGLang's reranking endpoint /v1/rerank achieves Remote Code Execution RCE when a model file containing a malcious tokenizer.chattemplate is loaded, as the Jinja2 chat templates are rendered using an unsandboxed jinja2.Environment...
CVE-2026-5760 CVE-2026-5760
SGLang's reranking endpoint /v1/rerank achieves Remote Code Execution RCE when a model file containing a malcious tokenizer.chattemplate is loaded, as the Jinja2 chat templates are rendered using an unsandboxed jinja2.Environment...
PT-2026-33769
Name of the Vulnerable Software and Affected Versions SGLang affected versions not specified Description An issue in the SGLang high-performance LLM serving framework allows remote code execution. The flaw exists in the serving rerank.py file, specifically within the /v1/rerank endpoint. The syst...