CVE-2026-3060

Description

SGLang' encoder parallel disaggregation system is vulnerable to unauthenticated remote code execution through the disaggregation module, which deserializes untrusted data using pickle.loads() without authentication.

PUBLISHED Reserved 2026-02-23 | Published 2026-03-12 | Updated 2026-04-07 | Assigner certcc

Problem types

CWE-502: Deserialization of Untrusted Data

Product status

References

github.com/...n/sglang/srt/disaggregation/encode_receiver.py

orca.security/...g/sglang-llm-framework-rce-vulnerabilities/

github.com/sgl-project/sglang/releases/tag/v0.5.10

github.com/sgl-project/sglang/pull/20904

cve.org (CVE-2026-3060)

nvd.nist.gov (CVE-2026-3060)

Download JSON