CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-57516

highCVSS 8.8covered by 1 sourcefirst seen 2026-07-01
Ray prior to 2.56.0 contains an unsafe deserialization vulnerability in the WebDataset reader that allows attackers to achieve remote code execution by supplying a malicious tar archive to the read_webdataset() function. The _default_decoder() function in webdataset_datasource.py unconditionally calls pickle.loads() on tar entries with .pkl/.pickle extensions and torch.load() with weights_only=False on .pt/.pth entries, executing arbitrary code inside Ray remote workers on every worker that processes the malicious archive.

⚡ Watch CVE-2026-57516

Get an email if CVE-2026-57516 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-57516

CVE.org record

Embed the live status

CVE-2026-57516 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-57516 status](https://www.csirts.com/badge/CVE-2026-57516)](https://www.csirts.com/cve/CVE-2026-57516)