A critical security vulnerability has been disclosed in SGLang that, if successfully exploited, could result in remote code execution on susceptible systems. The vulnerability, tracked as CVE-2026-5760, carries a CVSS score of 9.8 out of 10.0. It has been described as a case of command injection leading to the execution of arbitrary code. SGLang is a high-performance, open-source serving
source https://thehackernews.com/2026/04/sglang-cve-2026-5760-cvss-98-enables.html
source https://thehackernews.com/2026/04/sglang-cve-2026-5760-cvss-98-enables.html
 Enables RCE via Malicious GGUF Model Files){kind=link}