JustAppSec
UNKNOWN Severity

CVE-2026-5760

Last updated Apr 20, 2026 · Published Apr 20, 2026

← Back to list

Description

SGLang's reranking endpoint (/v1/rerank) achieves Remote Code Execution (RCE) when a model file containing a malcious tokenizer.chat_template is loaded, as the Jinja2 chat templates are rendered using an unsandboxed jinja2.Environment().

Affected products

1 listed
  • SGLang:SGLang

Mappings

CWE

CWE-94

CAPEC

None listed.

CVE® content © MITRE Corporation. Licensed under the CVE Terms of Use. Terms

Need help?Get in touch.