2 matches found
CVE-2026-5760
SGLang's reranking endpoint /v1/rerank achieves Remote Code Execution RCE when a model file containing a malcious tokenizer.chattemplate is loaded, as the Jinja2 chat templates are rendered using an unsandboxed jinja2.Environment...
CVE-2026-5760
creationtimestamp| type| source ---|---|--- 2026-04-02 04:00:00+00:00| published-proof-of-concept| https://github.com/Stuub/SGLang-0.5.9-RCE 2026-04-20 15:14:00+00:00| seen| https://thehackernews.com/2026/04/sglang-cve-2026-5760-cvss-98-enables.html 2026-04-20 15:50:50+00:00| seen|...