Critical severity9.8NVD Advisory· Published May 18, 2026· Updated May 19, 2026
CVE-2026-7301
CVE-2026-7301
Description
SGLangs multimodal generation runtime scheduler's ROUTER socket binds to 0.0.0.0 by default and contains a sink that calls pickle.loads() on incoming messages, enabling RCE when exposed to the internet.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
sglangPyPI | >= 0.5.5, <= 0.5.12 | — |
Affected products
1Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-gwv6-pq6m-p3rqghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-7301ghsaADVISORY
- antiproof.ai/blog/three-rces-in-sglangghsaWEB
- antiproof.ai/blog/three-rces-in-sglang/nvdPermissions Required
- github.com/sgl-project/sglang/tree/main/python/sglangnvdProductWEB
News mentions
1- ⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain ChaosThe Hacker News · May 25, 2026