CVE-2026-26220
LightLLM <= 1.1.0 PD Mode Unsafe Deserialization RCE
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
LightLLM version 1.1.0 and prior contain an unauthenticated remote code execution vulnerability in PD (prefill-decode) disaggregation mode. The PD master node exposes WebSocket endpoints that receive binary frames and pass the data directly to pickle.loads() without authentication or validation. A remote attacker who can reach the PD master can send a crafted payload to achieve arbitrary code execution.
| CWE | CWE-502 |
| Vendor | modeltc |
| Product | lightllm |
| Published | Feb 17, 2026 |
| Last Updated | Jun 23, 2026 |
Stay Ahead of the Next One
Get instant alerts for modeltc lightllm
Be the first to know when new unknown vulnerabilities affecting modeltc lightllm are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
ModelTC / LightLLM
0 โค 1.1.0
References
chocapikk.com: https://chocapikk.com/posts/2026/lightllm-pickle-rce/ github.com: https://github.com/ModelTC/LightLLM/issues/1213 lightllm-en.readthedocs.io: https://lightllm-en.readthedocs.io/en/latest/index.html github.com: https://github.com/ModelTC/lightllm/blob/a27dfc88c2144ed51a6e160b6fbe20aad66c8fe0/lightllm/server/api_http.py#L310 github.com: https://github.com/ModelTC/lightllm/blob/a27dfc88c2144ed51a6e160b6fbe20aad66c8fe0/lightllm/server/api_http.py#L331 vulncheck.com: https://www.vulncheck.com/advisories/lightllm-pd-mode-unsafe-deserialization-rce
Credits
Valentin Lobstein (Chocapikk)