CVE-2026-26210: CWE-502 Deserialization of Untrusted Data in kvcache-ai ktransformers
KTransformers through 0.5.3 contains an unsafe deserialization vulnerability in the balance_serve backend mode where the scheduler RPC server binds a ZMQ ROUTER socket to all interfaces with no authentication and deserializes incoming messages using pickle.loads() without validation. Attackers can send a crafted pickle payload to the exposed ZMQ socket to execute arbitrary code on the server with the privileges of the ktransformers process.
AI Analysis
Technical Summary
CVE-2026-26210 is a critical deserialization vulnerability (CWE-502) in kvcache-ai's ktransformers product, specifically in versions up to 0.5.3. The issue arises because the scheduler RPC server in balance_serve mode binds a ZMQ ROUTER socket to all interfaces without any authentication mechanism and uses Python's pickle.loads() to deserialize incoming messages without validation. This unsafe deserialization enables remote attackers to craft malicious pickle payloads that, when processed, execute arbitrary code on the server with the same privileges as the ktransformers process. The CVSS 4.0 score is 9.3, reflecting network attack vector, no required privileges or user interaction, and high impact on confidentiality, integrity, and availability.
Potential Impact
Successful exploitation allows remote attackers to execute arbitrary code on the affected server with the privileges of the ktransformers process. This can lead to full compromise of the system running the vulnerable service, including unauthorized data access, modification, or disruption of service.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, it is recommended to restrict network exposure of the scheduler RPC server, disable or avoid using the balance_serve backend mode if possible, and implement network-level controls to prevent untrusted access to the ZMQ ROUTER socket. Do not expose the service to untrusted networks.
CVE-2026-26210: CWE-502 Deserialization of Untrusted Data in kvcache-ai ktransformers
Description
KTransformers through 0.5.3 contains an unsafe deserialization vulnerability in the balance_serve backend mode where the scheduler RPC server binds a ZMQ ROUTER socket to all interfaces with no authentication and deserializes incoming messages using pickle.loads() without validation. Attackers can send a crafted pickle payload to the exposed ZMQ socket to execute arbitrary code on the server with the privileges of the ktransformers process.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-26210 is a critical deserialization vulnerability (CWE-502) in kvcache-ai's ktransformers product, specifically in versions up to 0.5.3. The issue arises because the scheduler RPC server in balance_serve mode binds a ZMQ ROUTER socket to all interfaces without any authentication mechanism and uses Python's pickle.loads() to deserialize incoming messages without validation. This unsafe deserialization enables remote attackers to craft malicious pickle payloads that, when processed, execute arbitrary code on the server with the same privileges as the ktransformers process. The CVSS 4.0 score is 9.3, reflecting network attack vector, no required privileges or user interaction, and high impact on confidentiality, integrity, and availability.
Potential Impact
Successful exploitation allows remote attackers to execute arbitrary code on the affected server with the privileges of the ktransformers process. This can lead to full compromise of the system running the vulnerable service, including unauthorized data access, modification, or disruption of service.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, it is recommended to restrict network exposure of the scheduler RPC server, disable or avoid using the balance_serve backend mode if possible, and implement network-level controls to prevent untrusted access to the ZMQ ROUTER socket. Do not expose the service to untrusted networks.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulnCheck
- Date Reserved
- 2026-02-11T20:08:07.941Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69ea90c487115cfb6861c6b4
Added to database: 4/23/2026, 9:36:04 PM
Last enriched: 4/23/2026, 9:51:17 PM
Last updated: 4/24/2026, 6:07:31 AM
Views: 7
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.