smolagents — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in smolagents, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-4963	huggingface smolagents Incomplete Fix CVE-2025-9959 local_python_executor.py evaluate_with code injection CWE-94	6.3	Medium	2026-03-27
CVE-2026-2654	huggingface smolagents LocalPythonExecutor requests.post server-side request forgery CWE-918	6.3	Medium	2026-02-18
CVE-2025-14931	Hugging Face smolagents Remote Python Executor Deserialization of Untrusted Data Remote Code Execution Vulnerability CWE-502	9.8^AI	Critical^AI	2025-12-23

All 3 known CVE vulnerabilities affecting smolagents with full Chinese analysis, references, and POCs where available.