CVE-2026-7304: SGLang: Unauthenticated RCE via --enable-custom-logit-processor

May 18, 2026 (updated May 29, 2026)

SGLang’s multimodal generation runtime is vulnerable to unauthenticated remote code execution when the –enable-custom-logit-processor option is enabled, as Python objects loaded via dill.loads() will be deserialized without validation.

References

antiproof.ai/blog/three-rces-in-sglang
github.com/advisories/GHSA-36m8-w8qf-g76p
github.com/sgl-project/sglang/tree/main/python/sglang
nvd.nist.gov/vuln/detail/CVE-2026-7304

Code Behaviors & Features

Detect and mitigate CVE-2026-7304 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →