Cyber Resilience

CVE-2026-7302

Critical

Published: 18 May 2026

Published
18 May 2026
Modified
19 May 2026
KEV Added
Patch
CVSS Score v3.1 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
EPSS Score 0.0039 30.5th percentile
Risk Priority 70 floored blend · peak EPSS

Summary

CVE-2026-7302 is a critical-severity Path Traversal: '.../...//' (CWE-35) vulnerability in Lmsys Sglang. Its CVSS base score is 9.1 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 30.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

SGLangs multimodal generation runtime is vulnerable to an unauthenticated path traversal vulnerability, allowing an attacker to write arbitrary files anywhere the server process has write access, by including ../ sequences in the upload filename when sent to specific endpoints.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1105 Ingress Tool Transfer Command And Control
Adversaries may transfer tools or other files from an external system into a compromised environment.
Why these techniques?

Unauthenticated path traversal on server endpoints directly enables remote arbitrary file write (T1190) and facilitates malicious file ingress (T1105).

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-7301Same product: Lmsys Sglang
CVE-2026-3059Same product: Lmsys Sglang
CVE-2026-3060Same product: Lmsys Sglang
CVE-2026-5760Same product: Lmsys Sglang
CVE-2026-7304Same product: Lmsys Sglang
CVE-2025-41723Shared CWE-35
CVE-2025-24685Shared CWE-35
CVE-2025-42937Shared CWE-35
CVE-2026-25397Shared CWE-35
CVE-2025-67914Shared CWE-35

Affected Assets

lmsys
sglang
0.5.10

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References