2
2
2
2
Vulnerability Timeline
2 vulnerabilities discovered over time for Sglang
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2026-3060 | 9.8 | This vulnerability allows an attacker to run arbitrary code on a vulnerable system remotely without needing to log in. It occurs because the system improperly processes untrusted data, which can be exploited if an attacker sends specially crafted input to the disaggregation module. | lmsyssglang | Exploit Available | 27 days agoMar 12, 2026 |
| CVE-2026-3059 | 9.8 | This vulnerability allows an attacker to run any code they want on the affected system remotely, without needing to log in. It occurs because the system processes untrusted data in a way that can be exploited, specifically through a messaging service that doesn't check if the data is safe. | lmsyssglang | Exploit Available | 27 days agoMar 12, 2026 |
About Lmsys Sglang Security
This page provides comprehensive security vulnerability tracking for Lmsys Sglang. Our database includes all CVEs affecting this product, updated in real-time from official sources.
Each vulnerability listing includes detailed CVSS severity analysis, exploit availability status, AI-generated explanations, and direct links to official security patches and vendor advisories.
Security Recommendations
- • Always keep Sglang updated to the latest version
- • Subscribe to security advisories from Lmsys
- • Monitor this page for new vulnerabilities affecting your version
- • Prioritize patching critical and high severity issues immediately