Zurück zur CVE-Übersicht
CVE-2026-57516
HIGH(8.8)CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Risk Signal Score22/100 — NIEDRIG
- CVSS 8.8 — Hoch
EPSS-Score
0%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
8.8
Technische Schwere
Beschreibung
Ray prior to 2.56.0 contains an unsafe deserialization vulnerability in the WebDataset reader that allows attackers to achieve remote code execution by supplying a malicious tar archive to the read_webdataset() function. The _default_decoder() function in webdataset_datasource.py unconditionally calls pickle.loads() on tar entries with .pkl/.pickle extensions and torch.load() with weights_only=False on .pt/.pth entries, executing arbitrary code inside Ray remote workers on every worker that processes the malicious archive.
Referenzen
- https://github.com/ray-project/ray/pull/63469
- https://github.com/ray-project/ray/pull/63470
- https://github.com/ray-project/ray/releases/tag/ray-2.56.0
- https://github.com/ray-project/ray/security/advisories/GHSA-hhrp-gw25-jr43
- https://www.vulncheck.com/advisories/ray-unsafe-deserialization-rce-via-webdatas...
- https://github.com/ray-project/ray/security/advisories/GHSA-hhrp-gw25-jr43