CVE-2026-3989NVD

Vulnerability Summary

SGLangs `replay_request_dump.py` contains an insecure pickle.load() without validation and proper deserialization. An attacker can take advantage of this by providing a malicious .pkl file, which will execute the attackers code on the device running the script.

Severity Level

HIGH(7.8)

Published Date

Mar 12, 2026

Last Modified

Apr 7, 2026

Exploitation Status

????

EPSS Score (30-Day)

0.02%Probability

Root Weakness (CWE)

N/A

CVSS v3.1 Base Metrics

Attack VectorLocal

Attack ComplexityLow

Privileges RequiredNone

User InteractionRequired

ScopeUnchanged

ConfidentialityHigh

IntegrityHigh

AvailabilityHigh

External References

https://github.com/sgl-project/sglang/blob/main/scripts/playground/replay_request_dump.py
https://github.com/sgl-project/sglang/pull/20904
https://github.com/sgl-project/sglang/releases/tag/v0.5.10
https://orca.security/resources/blog/sglang-llm-framework-rce-vulnerabilities/

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

CVE-2026-3989NVD

Vulnerability Summary

External References