Topic

#cve-2026-5760

1 article exploring cve-2026-5760. Expert insights and analysis from our editorial team.

Showing 1–1 of 1 articles
Related topics:
sglang jinja2-ssti gguf-security model-hub-trust inference-security remote-code-execution

Articles

Newest first
Security

SGLang's CVE-2026-5760 Turns a GGUF Download Into RCE, Shifting the Trust Boundary to Hugging Face

CVE-2026-5760 lets poisoned GGUF files trigger Jinja2 SSTI through SGLang's unsandboxed template rendering, forcing teams to treat hub downloads as executable code.
Browse All Topics