Smolagents
This hub aggregates every CVE we track for Smolagents, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
5
CVEs tracked
2
Critical
0
High
0
In CISA KEV
Severity distribution
MEDIUM3CRITICAL2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
1
0
1
0
1
1
0
0
0
2024-072026-06
Latest CVEs
The 5 most recently published vulnerabilities affecting Smolagents.
- CVE-2026-4963huggingface smolagents Incomplete Fix CVE-2025-9959 local_python_executor.py evaluate_with code injection6.3
- CVE-2026-2654huggingface smolagents LocalPythonExecutor requests.post server-side request forgery6.3
- CVE-2025-14931Hugging Face smolagents Remote Python Executor Deserialization of Untrusted Data Remote Code Execution Vulnerability10.0
- CVE-2025-11844XPath Injection in Hugging Face Smolagents search_item_ctrl_f Function5.4
- CVE-2025-5120Sandbox Escape Vulnerability in huggingface/smolagents10.0
Product normalization is registry-driven with AI assist and human review. How it works