CVE-2026-3060: SGLang's encoder parallel disaggregation system is vulnerable to unauthenticated remote code execution through the disaggregation module

March 12, 2026

SGLang’s encoder parallel disaggregation system is vulnerable to unauthenticated remote code execution through the disaggregation module, which deserializes untrusted data using pickle.loads() without authentication.

References

github.com/advisories/GHSA-jx93-g359-86wm
github.com/sgl-project/sglang
github.com/sgl-project/sglang/blob/main/python/sglang/srt/disaggregation/encode_receiver.py
nvd.nist.gov/vuln/detail/CVE-2026-3060
orca.security/resources/blog/sglang-llm-framework-rce-vulnerabilities

Code Behaviors & Features

Detect and mitigate CVE-2026-3060 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →