{"vulnerability": "cve-2026-4372", "sightings": [{"uuid": "f3c87771-2bae-4895-a49f-8fc2920d23b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4372", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116634281340740498", "content": "Attention, elevated activities detected targeting huggingface transformers (CVE-2026-4372) https://vuldb.com/vuln/365468/cti", "creation_timestamp": "2026-05-25T08:31:36.911645Z"}, {"uuid": "c398f172-9d2c-43b3-8f2a-d21bfa2ec4b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-4372", "type": "seen", "source": "https://bsky.app/profile/mel-echosphere.bsky.social/post/3mmr3qyfrjn2a", "content": "HuggingFace Transformers\u3001config.json \u306e\u30d5\u30a3\u30fc\u30eb\u30c91\u500b\u3067 trust_remote_code \u3092\u7d20\u901a\u308a\u3059\u308b\u7a74\u3002CVE-2026-4372\u3001CVSS 7.8\u3002\u26a0\ufe0f\n\nfrom_pretrained() \u3067\u30e2\u30c7\u30eb\u8aad\u3080\u3060\u3051\u3067\u3001\u653b\u6483\u8005\u306e Python \u304c OS \u6a29\u9650\u3067\u8d70\u308b\u3002trust_remote_code=False \u306b\u3057\u3066\u3066\u3082\u95a2\u4fc2\u306d\u3047\u3002\n\nv5.3.0 \u3067\u4fee\u6b63\u3002\ud83d\udc8e\n\nhttps://vulnerability.circl.lu/vuln/cve-2026-4372\n\n#HuggingFace #LLMSecurity", "creation_timestamp": "2026-05-26T13:25:33.099042Z"}]}