GHSA-hvwj-8w5g-28rg
Suggest an improvement- Source
- https://github.com/advisories/GHSA-hvwj-8w5g-28rg
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-hvwj-8w5g-28rg/GHSA-hvwj-8w5g-28rg.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-hvwj-8w5g-28rg
- Aliases
-
- CVE-2026-3989
- Published
- 2026-03-12T12:30:29Z
- Modified
- 2026-04-07T22:35:04.809458Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- SGLangs `replay_request_dump.py` contains an insecure pickle.load() without validation and proper deserialization
- Details
-
SGLangs
replay_request_dump.pycontains an insecure pickle.load() without validation and proper deserialization. An attacker can take advantage of this by providing a malicious .pkl file, which will execute the attackers code on the device running the script. - Database specific
{ "cwe_ids": [ "CWE-502" ], "github_reviewed": true, "github_reviewed_at": "2026-03-12T17:39:04Z", "nvd_published_at": "2026-03-12T12:15:59Z", "severity": "HIGH" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2026-3989
- https://github.com/sgl-project/sglang/pull/20904
- https://github.com/sgl-project/sglang
- https://github.com/sgl-project/sglang/blob/main/scripts/playground/replay_request_dump.py
- https://github.com/sgl-project/sglang/releases/tag/v0.5.10
- https://orca.security/resources/blog/sglang-llm-framework-rce-vulnerabilities
Affected packages
PyPI / sglang
Package
- Name
- sglang
- View open source insights on deps.dev
- Purl
- pkg:pypi/sglang
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.5.10
Affected versions
0.*
0.1.3
0.1.4
0.1.5
0.1.6
0.1.7
0.1.9
0.1.10
0.1.11
0.1.12
0.1.13
0.1.14
0.1.15
0.1.16
0.1.17
0.1.18
0.1.19
0.1.20
0.1.21
0.1.22
0.1.24
0.1.25
0.1.26
0.2.0
0.2.1
0.2.2
0.2.3
0.2.4
0.2.5
0.2.6
0.2.7
0.2.8
0.2.9
0.2.9.post1
0.2.10
0.2.11
0.2.12
0.2.13
0.2.14
0.2.14.post1
0.2.14.post2
0.2.15
0.3.0
0.3.1
0.3.1.post1
0.3.1.post2
0.3.1.post3
0.3.2
0.3.3
0.3.3.post1
0.3.4
0.3.4.post1
0.3.4.post2
0.3.5
0.3.5.post1
0.3.5.post2
0.3.6
0.3.6.post1
0.3.6.post2
0.3.6.post3
0.4.0
0.4.0.post1
0.4.0.post2
0.4.1
0.4.1.post1
0.4.1.post2
0.4.1.post3
0.4.1.post4
0.4.1.post5
0.4.1.post6
0.4.1.post7
0.4.2
0.4.2.post1
0.4.2.post2
0.4.2.post3
0.4.2.post4
0.4.3
0.4.3.post1
0.4.3.post2
0.4.3.post3
0.4.3.post4
0.4.4
0.4.4.post1
0.4.4.post2
0.4.4.post3
0.4.4.post4
0.4.5
0.4.5.post1
0.4.5.post2
0.4.5.post3
0.4.6
0.4.6.post1
0.4.6.post2
0.4.6.post3
0.4.6.post4
0.4.6.post5
0.4.7
0.4.7.post1
0.4.8
0.4.8.post1
0.4.9
0.4.9.post1
0.4.9.post2
0.4.9.post3
0.4.9.post4
0.4.9.post5
0.4.9.post6
0.4.10
0.4.10.post1
0.4.10.post2
0.5.0rc0
0.5.0rc1
0.5.0rc2
0.5.1
0.5.1.post1
0.5.1.post2
0.5.1.post3
0.5.2rc0
0.5.2rc1
0.5.2rc2
0.5.2
0.5.3rc0
0.5.3rc2
0.5.3
0.5.3.post1
0.5.3.post2
0.5.3.post3
0.5.4
0.5.4.post1
0.5.4.post2
0.5.4.post3
0.5.5
0.5.5.post1
0.5.5.post2
0.5.5.post3
0.5.6
0.5.6.post1
0.5.6.post2
0.5.7
0.5.8
0.5.8.post1
0.5.9
0.5.10rc0