CVE-2026-3059

Description

SGLang's multimodal generation module is vulnerable to unauthenticated remote code execution through the ZMQ broker, which deserializes untrusted data using pickle.loads() without authentication.

PUBLISHED Reserved 2026-02-23 | Published 2026-03-12 | Updated 2026-04-07 | Assigner certcc

Problem types

CWE-502: Deserialization of Untrusted Data

Product status

References

github.com/...sglang/security/advisories/GHSA-3cp7-c6q2-94xr

github.com/...ang/multimodal_gen/runtime/scheduler_client.py

orca.security/...g/sglang-llm-framework-rce-vulnerabilities/

github.com/sgl-project/sglang/pull/20904

github.com/sgl-project/sglang/releases/tag/v0.5.10

cve.org (CVE-2026-3059)

nvd.nist.gov (CVE-2026-3059)

Download JSON