CVE-2026-10775
Published: Wed, 03 Jun 2026 23:16
Summary
A vulnerability was determined in sgl-project SGLang up to 0.5.11. Affected by this vulnerability is the function data_hash of the component Cache Handler. This manipulation causes denial of service.
Details
A vulnerability was determined in sgl-project SGLang up to 0.5.11. Affected by this vulnerability is the function data_hash of the component Cache Handler. This manipulation causes denial of service. The attack is restricted to local execution. A high degree of complexity is needed for the attack. The exploitation appears to be difficult. The exploit has been publicly disclosed and may be utilized. The pull request to fix this issue awaits acceptance.
Are YOU affected by CVE-2026-10775?
5-second check on your actual server. Reads /etc/os-release, uname -r, and dpkg-query; matches against the live USN + Debian Security Tracker feeds; tells you whether CVE-2026-10775 (and any other live CVE) applies. Anonymous, no signup.
curl https://mindsparkstack.com/scan.sh | bash
References
- https://github.com/sgl-project/sglang/
- https://github.com/sgl-project/sglang/issues/25462
- https://github.com/sgl-project/sglang/pull/22033
- https://vuldb.com/cve/CVE-2026-10775
- https://vuldb.com/submit/831438
- https://vuldb.com/vuln/368138
- https://vuldb.com/vuln/368138/cti
- https://github.com/sgl-project/sglang/pull/22033
- https://vuldb.com/submit/831438
StackPatch runs this match against YOUR installed packages every hour
Free 1-server / $99 lifetime founder seat (50 only) / $19+/mo monthly. Indie pricing.