๐Ÿ” CVE Alert

CVE-2026-57516

HIGH 8.8

Ray < 2.56.0 Unsafe Deserialization RCE via WebDataset Reader

CVSS Score
8.8
EPSS Score
0.0%
EPSS Percentile
0th

Ray prior to 2.56.0 contains an unsafe deserialization vulnerability in the WebDataset reader that allows attackers to achieve remote code execution by supplying a malicious tar archive to the read_webdataset() function. The _default_decoder() function in webdataset_datasource.py unconditionally calls pickle.loads() on tar entries with .pkl/.pickle extensions and torch.load() with weights_only=False on .pt/.pth entries, executing arbitrary code inside Ray remote workers on every worker that processes the malicious archive.

CWE CWE-502
Vendor anyscale, inc
Product ray
Published Jul 1, 2026
Last Updated Jul 1, 2026
Stay Ahead of the Next One

Get instant alerts for anyscale, inc ray

Be the first to know when new high vulnerabilities affecting anyscale, inc ray are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Affected Versions

Anyscale, Inc / Ray
0 < 2.56.0

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/ray-project/ray/releases/tag/ray-2.56.0 github.com: https://github.com/ray-project/ray/security/advisories/GHSA-hhrp-gw25-jr43 github.com: https://github.com/ray-project/ray/pull/63469 github.com: https://github.com/ray-project/ray/pull/63470 vulncheck.com: https://www.vulncheck.com/advisories/ray-unsafe-deserialization-rce-via-webdataset-reader

Credits

jeremysommerfeld8910-cpu ๐Ÿ” shakevsky ๐Ÿ” alexchenai ๐Ÿ” SSJCorpSec ๐Ÿ” thesecguy45 ๐Ÿ” sfwani ๐Ÿ” Rahul Karne