LOW🇵🇱 Wersja polska

CVE-2026-2654

CVSS 2.1v4.0pub. 2026-02-18upd. 2026-04-29

A weakness has been identified in huggingface smolagents 1.24.0. Impacted is the function requests.get/requests.post of the component LocalPythonExecutor. Executing a manipulation can lead to server-side request forgery. It is possible to launch the attack remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Huggingface Smolagents

    APP
    Huggingface
    1.0.0 – 1.24.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SSRF
CWE
References

Related vulnerabilities

CVE-2025-5120CRITICAL10.0PL ✓ten sam produkt

Sandbox escape i RCE w Huggingface Smolagents (local_python_executor)

CVE-2025-11844MEDIUM5.4ten sam produkt

Hugging Face Smolagents version 1.20.0 contains an XPath injection vulnerability in the search_item_ctrl_f fun...

CVE-2026-4963LOW2.1ten sam produkt

W huggingface smolagents 1.25.0.dev0 wykryto słabość. Dotyczy to funkcji evaluate_augassign/evaluate_call/eval...

CVE-2026-5241CRITICAL9.6PL ✓ten sam vendor

RCE w Huggingface Transformers — obejście trust_remote_code w LightGlue

CVE-2026-25874CRITICAL9.3PL ✓ten sam vendor

Niebezpieczna deserializacja w LeRobot — RCE przez gRPC bez uwierzytelnienia