CVE-2026-0763
Published: 23 January 2026
Summary
CVE-2026-0763 is a critical-severity Deserialization of Untrusted Data (CWE-502) vulnerability in Binary-Husky Gpt Academic. Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 41.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
This vulnerability is AI-related — categorised as LLM Application Platforms; in the Supply Chain and Deployment risk domain.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and AC-6 (Least Privilege).
Deeper analysis
CVE-2026-0763 is a remote code execution vulnerability in GPT Academic stemming from deserialization of untrusted data in the run_in_subprocess_wrapper_func function. The flaw arises from insufficient validation of user-supplied input, enabling an attacker to supply malicious serialized data that results in arbitrary code execution. The affected component is the run_in_subprocess_wrapper_func routine within GPT Academic installations, and the issue was originally tracked as ZDI-CAN-27958.
Remote attackers require no authentication to exploit the vulnerability and can achieve code execution with root privileges. The attack is possible over the network with low complexity, as indicated by the CVSS 9.8 score and CWE-502 classification.
The Zero Day Initiative advisory at the referenced URL addresses the issue for security practitioners tracking coordinated disclosure.
EPSS for this CVE rose from a low baseline to a peak of 0.0416, indicating emerging exploitation interest after public disclosure.
OWASP Top 10 for Web (2025)
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-4463
Vulnerability details
GPT Academic run_in_subprocess_wrapper_func Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the…
more
run_in_subprocess_wrapper_func function. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-27958.
- CWE(s)
AI Security AnalysisAI
- AI Category
- LLM Application Platforms
- Risk Domain
- Supply Chain and Deployment
- OWASP Top 10 for LLMs 2025
- None mapped
- Classification Reason
- Matched keywords: gpt
Related Threats
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly requires validation of untrusted user-supplied data before deserialization in run_in_subprocess_wrapper_func, blocking malicious payloads that lead to RCE.
Enforces least functionality by disabling or restricting unsafe subprocess wrapper and deserialization features that the vulnerability exposes without authentication.
Limits privileges so that even successful deserialization cannot yield root-level code execution on the affected GPT Academic installation.