Threats Tagged 'cve-2026-49121'
View all threats tagged with 'cve-2026-49121'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-49121'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-49121: Deserialization of Untrusted Data in ROCm aiterCVE-2026-49121 0 CVE-2026-49121 is a critical unauthenticated remote code execution vulnerability in the AI Tensor Engine for ROCm (AITER) up to version 0. 1. 14. It arises from insecure deserialization in the MessageQueue. recv() function within shm_broadcast. py, where malicious pickle payloads sent to a ZMQ SUB socket lacking authentication and validation can execute arbitrary code. Attackers who can access the writer XPUB endpoint on the cluster network or supply a forged Handle with a controlled remote_subscribe_addr can exploit this to run code on inference worker processes across remote reader workers simultaneously. No official patch or remediation guidance is currently available. The vulnerability has a CVSS 4. 0 score of 9. Join the discussion | CVE Database V5 | 06/01/2026, 17:09:18 UTC Added: 06/01/2026, 19:52:43 UTC |
Showing 1 to 1 of 1 result