CVE-2026-31234 - Vulnerability Details

Description

Horovod thru 0.28.1 contains an insecure deserialization vulnerability (CWE-502) in its KVStore HTTP server component. The KVStore server, used for distributed task coordination, lacks authentication and authorization controls, allowing any remote attacker to write arbitrary data via HTTP PUT requests. When a Horovod worker reads data from the KVStore (via HTTP GET), it deserializes the data using cloudpickle.loads() without verifying its source or integrity. An attacker can exploit this by sending a malicious pickle payload to the server before the legitimate data is written, causing the victim worker to deserialize and execute arbitrary code, leading to remote code execution.

Published: 2026-05-12

Score: n/a

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

Horovod through version 0.28.1 exposes an insecure deserialization vulnerability in its KVStore HTTP server component. The server accepts HTTP PUT requests without authentication or authorization, allowing an attacker to write arbitrary data. When a Horovod worker later reads data via HTTP GET, it reconstructs the payload with cloudpickle.loads() without source validation, leading the worker to deserialize a malicious pickle and execute arbitrary code. This flaw enables remote code execution on any machine running a vulnerable Horovod worker that polls the KVStore.

Affected Systems

The vulnerability affects any installation of Horovod up to and including version 0.28.1. Any environment that deploys Horovod’s distributed KVStore service without additional access controls is susceptible.

Risk and Exploitability

The flaw carries a high risk score due to its remote code execution impact, but the EPSS score is not available. The CVE is not listed in CISA’s KEV catalog, yet the lack of authentication means an attacker can reach the deserialization endpoint from any address that can reach the KVStore. Exploitation requires only the ability to send a crafted HTTP PUT request and a subsequent GET request by a worker; no privileged user context is needed on the victim host.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

affected

Version	Status	Constraints
`n/a`	affected	—

No data.

Vendor Product Confidence Versions

Horovod

90%

Version	Status	Scheme	Platform
`[0,0.28.1]`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade to a corrected version of Horovod where the insecure deserialization issue has been fixed.
Restrict access to the KVStore HTTP endpoint using firewalls or network policies so that only trusted hosts can perform PUT or GET operations.
Disable or remove the KVStore service if it is not required, or configure Horovod to avoid deserialization of untrusted data.
If a patch is not immediately available, block or refuse HTTP PUT requests to the KVStore until a secure release is deployed.

Generated by OpenCVE AI on May 12, 2026 at 18:29 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://github.com/horovod/horovod
https://www.notion.so/CVE-2026-31234-35d1e139318881d585cde508b9d2453c

History

Tue, 12 May 2026 19:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Horovod Horovod horovod
Vendors & Products		Horovod Horovod horovod

Tue, 12 May 2026 18:45:00 +0000

Type	Values Removed	Values Added
Title		Horovod KVStore Insecure Deserialization Enables Remote Code Execution
Weaknesses		CWE-502

Tue, 12 May 2026 17:30:00 +0000

Type	Values Removed	Values Added
Description		Horovod thru 0.28.1 contains an insecure deserialization vulnerability (CWE-502) in its KVStore HTTP server component. The KVStore server, used for distributed task coordination, lacks authentication and authorization controls, allowing any remote attacker to write arbitrary data via HTTP PUT requests. When a Horovod worker reads data from the KVStore (via HTTP GET), it deserializes the data using cloudpickle.loads() without verifying its source or integrity. An attacker can exploit this by sending a malicious pickle payload to the server before the legitimate data is written, causing the victim worker to deserialize and execute arbitrary code, leading to remote code execution.
References		https://github.com/horovod/horovod https://www.notion.so/CVE-2026-31234-35d1e139318881d585cde508b9d2453c

Subscriptions

Horovod Horovod

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2026-05-12T00:00:00.000Z

Updated: 2026-05-12T17:09:43.502Z

Reserved: 2026-03-09T00:00:00.000Z

Link: CVE-2026-31234

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-05-12T18:16:51.743

Modified: 2026-05-12T18:16:51.743

Link: CVE-2026-31234

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-12T19:30:23Z

Weaknesses

CWE-502

Impact

Affected Systems

Risk and Exploitability

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object