CVE-2026-7669
MEDIUM · 5.6Fresh disclosure, no PoC public, no KEV, vendor unresponsive; chatter recycled feeds and speculation.
What: Unsafe deserialization in SGLang's HuggingFace Transformer handler (get_tokenizer function) affecting versions up to 0.5.9. CVSS 5.6 MEDIUM.
Why it matters: Published yesterday with no vendor response, no KEV listing, and no confirmed PoC. Social chatter conflates unrelated authorization bypass claims (NextChat MCP) with the deserialization flaw. High complexity + difficult exploitability per NVD reduce practical risk. Chatter is largely automated feed replication.
Where it's seen: Vuln alert feeds and automated CVE tracking accounts dominating; one speculative post claiming RCE but without supporting evidence or PoC link.
RISK: MODERATE — Unsafe deserialization in ML serving path; high attack complexity and difficult exploitability limit near-term threat.
AttackerKB
view on attackerkb.com →A vulnerability was detected in sgl-project SGLang up to 0.5.9. Impacted is the function get_tokenizer of the file python/sglang/srt/utils/hf_transformers_utils.py of the component HuggingFace Transformer Handler. The manipulation results in deserialization. The attack can be executed remotely. A high complexity level is associated with this attack. The exploitability is considered difficult. The vendor was contacted early about this disclosure but did not respond in any way.
Public PoCs on GitHub 1 repo
- getquoteonline/NSNPartLookup.com-Lookup-Order-NSN-NIIN-Cage-Code-Parts ★ 0
NSNPartLookup.com – Lookup & Order NSN, NIIN, Cage Code Parts
Articles & coverage 13 articles
- CVE-2026-7669 - Exploits & Severity - Feedly
This vulnerability is identified as CVE-2026-7669 . The attack can be executed remotely. There is not any exploit available. The vendor was
- RHEL 10 : rhc (RHSA-2026:7669)<!-- --> | Tenable®
# RHEL 10 : rhc (RHSA-2026:7669). ###### high Nessus Plugin ID 306107. The remote Red Hat host is missing a security update for rhc. The remote Redhat Enterprise Linux 10 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:7669 advisory. rhc is a client tool and daemon that connects the system to Red Hat hosted services enabling system and subscription m
- CVE-2026-7269 Detail - NVD
A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. ... The exploit has been made public and could be used.
- CVE-2026-7469<!-- --> | Tenable®
###### Links. Tenable Cloud Tenable Community & Support Tenable University. ###### Detections. ###### Analytics. # CVE-2026-7469. ###### medium. #### Description. A vulnerability was detected in Tenda 4G300 US\_4G300V1.0Mt\_V1.01.42\_CN\_TDC01. This impacts the function sub\_425A28 of the file /goform/DelFil. The manipulation of the argument delflag results in command injection. The attack may be
- CVE-2026-7469 - Detail CVSS, EPSS & CISA Kev | CVE Find
CVE, short for Common Vulnerabilities and Exposures, is a list of publicly disclosed computer security flaws. CISA Known Exploited Vulnerabilities (KEV) is an initiative that identifies and publishes a list of known exploited vulnerabilities. CWE, or Common Weakness Enumeration, is a comprehensive list and categorization of software weaknesses and vulnerabilities. It serves as a common language fo
› NVD details 2 CWE ·0 vendors · 3 refs expand
Description
A vulnerability was detected in sgl-project SGLang up to 0.5.9. Impacted is the function get_tokenizer of the file python/sglang/srt/utils/hf_transformers_utils.py of the component HuggingFace Transformer Handler. The manipulation results in deserialization. The attack can be executed remotely. A high complexity level is associated with this attack. The exploitability is considered difficult. The vendor was contacted early about this disclosure but did not respond in any way.
Top posts driving the trend
@VulnWatchAIX · 5/3/2026CVE-2026-7669 enables RCE in SGLang via unsafe tokenizer deserialization. NextChat MCP integrations suffer authorization bypasses. Audit model serving paths and tool policies immediately. https://t.co/hRMqUaWiTd
♥ 0 · ↻ 0 · 💬 0
@infoflowcloudX · 5/2/2026🚨*CVE* CVE-2026-7669 A vulnerability was detected in sgl-project SGLang up to 0.5.9. Impacted is the function get_tokenizer of the file python/sglang/srt/utils/hf_transformers_utils.py of t… https://t.co/ZXHnmweQA1 ----- Traducción: CVE-2026-7669 Se … https://t.co/utmtNgl3sv`
♥ 0 · ↻ 0 · 💬 0
@CVEnewX · 5/2/2026CVE-2026-7669 A vulnerability was detected in sgl-project SGLang up to 0.5.9. Impacted is the function get_tokenizer of the file python/sglang/srt/utils/hf_transformers_utils.py of t… https://t.co/JtpyGk5T1s
♥ 0 · ↻ 0 · 💬 0
@VulmonFeedsX · 5/2/2026CVE-2026-7669 Unsafe Deserialization in SGLang HuggingFace Transformer Handler Up to 0.5.9 https://t.co/rAWiNRhk94
♥ 0 · ↻ 0 · 💬 0- @cve.skyfleet.blueBluesky · 5/2/2026
CVE-2026-7669 - sgl-project SGLang HuggingFace Transformer hf_transformers_utils.py get_tokenizer deserialization CVE ID : CVE-2026-7669 Published : May 2, 2026, 10 p.m. | 19 minutes ago Description : A vulnerability was detected in sgl-project SGLang up to 0.5.9. Impact...
♥ 0 · ↻ 0 · 💬 0
