Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2026-3989

Summary
Assigner-certcc
Assigner Org ID-37e5125f-f79b-445b-8fad-9564f167944b
Published At-12 Mar, 2026 | 11:37
Updated At-07 Apr, 2026 | 18:46
Rejected At-
Credits

CVE-2026-3989

SGLangs `replay_request_dump.py` contains an insecure pickle.load() without validation and proper deserialization. An attacker can take advantage of this by providing a malicious .pkl file, which will execute the attackers code on the device running the script.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:certcc
Assigner Org ID:37e5125f-f79b-445b-8fad-9564f167944b
Published At:12 Mar, 2026 | 11:37
Updated At:07 Apr, 2026 | 18:46
Rejected At:
▼CVE Numbering Authority (CNA)
CVE-2026-3989

SGLangs `replay_request_dump.py` contains an insecure pickle.load() without validation and proper deserialization. An attacker can take advantage of this by providing a malicious .pkl file, which will execute the attackers code on the device running the script.

Affected Products
Vendor
SGLang
Product
SGLang
Versions
Affected
  • 0.5.10
Problem Types
TypeCWE IDDescription
N/AN/ACWE-502: Deserialization of Untrusted Data
Type: N/A
CWE ID: N/A
Description: CWE-502: Deserialization of Untrusted Data
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://github.com/sgl-project/sglang/blob/main/scripts/playground/replay_request_dump.py
N/A
https://orca.security/resources/blog/sglang-llm-framework-rce-vulnerabilities/
N/A
https://github.com/sgl-project/sglang/releases/tag/v0.5.10
N/A
https://github.com/sgl-project/sglang/pull/20904
N/A
Hyperlink: https://github.com/sgl-project/sglang/blob/main/scripts/playground/replay_request_dump.py
Resource: N/A
Hyperlink: https://orca.security/resources/blog/sglang-llm-framework-rce-vulnerabilities/
Resource: N/A
Hyperlink: https://github.com/sgl-project/sglang/releases/tag/v0.5.10
Resource: N/A
Hyperlink: https://github.com/sgl-project/sglang/pull/20904
Resource: N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:cret@cert.org
Published At:12 Mar, 2026 | 12:15
Updated At:07 Apr, 2026 | 19:16

SGLangs `replay_request_dump.py` contains an insecure pickle.load() without validation and proper deserialization. An attacker can take advantage of this by providing a malicious .pkl file, which will execute the attackers code on the device running the script.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Type: Secondary
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CPE Matches
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://github.com/sgl-project/sglang/blob/main/scripts/playground/replay_request_dump.pycret@cert.org
N/A
https://github.com/sgl-project/sglang/pull/20904cret@cert.org
N/A
https://github.com/sgl-project/sglang/releases/tag/v0.5.10cret@cert.org
N/A
https://orca.security/resources/blog/sglang-llm-framework-rce-vulnerabilities/cret@cert.org
N/A
Hyperlink: https://github.com/sgl-project/sglang/blob/main/scripts/playground/replay_request_dump.py
Source: cret@cert.org
Resource: N/A
Hyperlink: https://github.com/sgl-project/sglang/pull/20904
Source: cret@cert.org
Resource: N/A
Hyperlink: https://github.com/sgl-project/sglang/releases/tag/v0.5.10
Source: cret@cert.org
Resource: N/A
Hyperlink: https://orca.security/resources/blog/sglang-llm-framework-rce-vulnerabilities/
Source: cret@cert.org
Resource: N/A

Change History

0
Information is not available yet

Similar CVEs

0Records found
Details not found