CVE-2026-26210 CRITICAL

CVE-2026-26210: KTransformers Unsafe Deserialization RCE via balance_serve

Vendor Kvcache-Ai
Product ktransformers
Weakness CWE-502 · Unsafe deserialization
Published April 23, 2026
Last update April 24, 2026

CVSS base score

9.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

KTransformers through 0.5.3 contains an unsafe deserialization vulnerability in the balance_serve backend mode where the scheduler RPC server binds a ZMQ ROUTER socket to all interfaces with no authentication and deserializes incoming messages using pickle.loads() without validation. Attackers can send a crafted pickle payload to the exposed ZMQ socket to execute arbitrary code on the server with the privileges of the ktransformers process.

Key dates

02Disclosure timeline

April 23, 2026 CVE published
April 24, 2026 Record updated