Hugging Face Transformers Security Flaw Allows Remote Code Execution

A critical RCE in Hugging Face Transformers (CVE-2026-4372) allowed malicious model configuration to trigger automatic download and execution of attacker-controlled kernel packages via the _attn_implementation_internal field when loading models; affected versions 4.56.0 through 5.2.x were patched in 5.3.0 and users are advised to upgrade, sandbox model-loading, and avoid untrusted models.