CVE-2026-26220
published 2026-02-17CVE-2026-26220: LightLLM version 1.1.0 and prior contain an unauthenticated remote code execution vulnerability in PD (prefill-decode) disaggregation mode. The PD master node…
PriorityP268critical9.3CVSS 4.0
AVNACLATNPRNUINVCHVIHVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EPSS
0.66%
47.1th percentile
LightLLM version 1.1.0 and prior contain an unauthenticated remote code execution vulnerability in PD (prefill-decode) disaggregation mode. The PD master node exposes WebSocket endpoints that receive binary frames and pass the data directly to pickle.loads() without authentication or validation. A remote attacker who can reach the PD master can send a crafted payload to achieve arbitrary code execution.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| modeltc | lightllm | <= 1.1.0 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor for unauthenticated WebSocket connections to LightLLM PD master node endpoints receiving binary frames — these may carry malicious pickle payloads for RCE. ↗
- →Detect LightLLM running in PD (prefill-decode) disaggregation mode as an attack surface; any external network access to the PD master node should be treated as high-risk. ↗
- ·No fix is available as of the publication date (Feb 17, 2026); LightLLM 1.1.0 and all prior versions are affected with no patch released. ↗
- ·The vulnerability is only exploitable when LightLLM is deployed in PD disaggregation mode; standard deployments not using this mode may not expose the vulnerable WebSocket endpoints. ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Greynoiseio
NoiseLetter March 2026
blogs_greynoiseio
NoiseLetter March 2026
Events, events… and yes, even more events. 🌍 GreyNoise has been on the move. March kept us busy with stops at eCrimes in London and SecIT in Hanover—but we’re just getting started. Over the next few months, we’ll be hitting the road for CrowdStrike CrowdTours across eight cities, heading to Glasgow to speak and sponsor CyberUK, and making our way to Tampa for H-ISAC. If you’ll be at any of these (or nearby), we’d love to connect.
And while we’ve been racking up miles, we haven’t slowed down on the research front. We’ve just released some exciting new findings—with even more coming in the next few weeks—so keep an eye out.
Thanks, as always, for being part of the GreyNoise community.
Featured
About this new report
Every enterprise firewall processes traffic from residential IP space. T
Wiz
CVE-2026-26220 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.3
CVE-2026-26220 [CRITICAL] CVE-2026-26220 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-26220 :
Python vulnerability analysis and mitigation
LightLLM version 1.1.0 and prior contain an unauthenticated remote code execution vulnerability in PD (prefill-decode) disaggregation mode. The PD master node exposes WebSocket endpoints that receive binary frames and pass the data directly to pickle.loads() without authentication or validation. A remote attacker who can reach the PD master can send a crafted payload to achieve arbitrary code execution.
Source : NVD
## 9.3
Score
Published February 17, 2026
Severity CRITICAL
CNA Score 9.3
High-profile Vulnerability Yes
Affected Technologies
Python
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 74.4
Exploitation Probabi
Wiz
O banco de dados CVE: inteligência de vulnerabilidade com curadoria da Wiz | Wiz
blogs_wiz·CVSS 8.8
[HIGH] O banco de dados CVE: inteligência de vulnerabilidade com curadoria da Wiz | Wiz
## Banco de dados de vulnerabilidades Wiz
Um recurso abrangente para monitorar vulnerabilidades de alto perfil em ambientes de nuvem, adaptado para equipes de segurança e profissionais de nuvem
Veja como o Wiz detecta vulnerabilidades exploráveis em cargas de trabalho na nuvem. Assista à demo de 12 minutos
## Explore por tecnologia
## Filtros populares
## Alto perfil
CVE ID
Gravidade
Pontuação
Tecnologias
Nome do componente
Exploração do CISA KEV
Tem correção
Data de publicação
CVE-2026-3854
HIGH
8.7
GitHub Enterprise Server
cpe:2.3:a:github:enterprise_server
Não
Sim
Mar 10, 2026
CVE-2026-26220
CRITICAL
9.3
Python
lightllm
Não
Não
Feb 17, 2026
CVE-2026-2006
HIGH
8.8
PostgreSQL
postgresql:13::postgresql-test-rpm-macros
Não
Sim
Feb 12, 2026
CVE-2026
https://chocapikk.com/posts/2026/lightllm-pickle-rce/https://github.com/ModelTC/LightLLM/issues/1213https://github.com/ModelTC/lightllm/blob/a27dfc88c2144ed51a6e160b6fbe20aad66c8fe0/lightllm/server/api_http.py#L310https://github.com/ModelTC/lightllm/blob/a27dfc88c2144ed51a6e160b6fbe20aad66c8fe0/lightllm/server/api_http.py#L331https://lightllm-en.readthedocs.io/en/latest/index.htmlhttps://www.vulncheck.com/advisories/lightllm-pd-mode-unsafe-deserialization-rce
2026-02-17
Published