Vulnerabilities

CVE-2026-5536

by Fred · 05/04/2026

A weakness has been identified in FedML-AI FedML up to 0.8.9. Affected is the function sendMessage of the file grpc_server.py of the component gRPC server. Executing a manipulation can lead to deserialization. The attack may be performed from remote. The vendor was contacted early about this disclosure but did not respond in any way.

More information : https://github.com/AnalogyC0de/public_exp/issues/26

Similar

Tags: Cybersecurity Alert