{"@context":"https://openvex.dev/ns/v0.2.0","@id":"https://database.harborguard.co/cve/CVE-2026-53805/vex.json","author":"HarborGuard Database","role":"Document Creator","timestamp":"2026-06-17T18:12:56.443Z","version":1,"tooling":"HarborGuard Database (https://database.harborguard.co)","statements":[{"vulnerability":{"name":"CVE-2026-53805","@id":"https://www.cve.org/CVERecord?id=CVE-2026-53805","description":"NVIDIA Spatial Intelligence Lab's (SIL) GEN3C contains an unauthenticated remote code execution vulnerability in the inference API server where the /request-inference and /seed-model endpoints deserialize raw HTTP request bodies using Python's pickle.loads() without authentication or input validation. Attackers can supply a crafted payload containing a __reduce__ gadget to the inference API port to achieve remote code execution as the inference process."},"products":[{"@id":"cpe:2.3:a:nv-tlabs:gen3c:*:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:nv-tlabs:gen3c:*:*:*:*:*:*:*:*"}}],"status":"affected","action_statement":"Update to a fixed version: db2ffe12ced12ddafcec5e0422ee46ce8520746b.","timestamp":"2026-06-17T18:12:56.443Z"}]}