CVE-2025-10164— lmsys sglang update_weights_from_tensor main deserialization

lmsys sglang update_weights_from_tensor main deserialization

A security flaw has been discovered in lmsys sglang 0.4.6. Affected by this vulnerability is the function main of the file /update_weights_from_tensor. The manipulation of the argument serialized_named_tensors results in deserialization. The attack can be launched remotely. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

可信数据的反序列化

LMSYS SGLang 代码问题漏洞

LMSYS SGLang是LMSYS开源的一个大语言模型推理引擎。 LMSYS SGLang 0.4.6版本存在代码问题漏洞，该漏洞源于对文件/update_weights_from_tensor中函数main的参数serialized_named_tensors的错误操作导致反序列化。

N/A

N/A