Langchain

Latest version: v0.3.11

Vulnerabilities (25)

CVE/PVE Vulnerability ID Advisory Affected versions Severity Severity Score
CVE-2024-27444 65703

langchain_experimental (aka LangChain Experimental) in LangChain befo…

  • <0.1.8
- -
CVE-2024-21503 70875

Langchain version 0.1.14 addresses CVE-2024-21503, updating the "blac…

  • <0.1.14
- -
CVE-2024-28088 66051

Langchain addresses path traversal vulnerability CVE-2024-28088 by de…

  • <0.1.12
- -
CVE-2024-0243 65692

In versions of Langchain-ai before 0.1.0, a vulnerability exists wher…

  • <0.1.0
- -
PVE-2024-99902 64702

SQL injection vulnerability in langchain v.0.0.64 allows a remote att…

  • ==0.0.64
- -
PVE-2024-99903 64701

An issue in langchain v.0.0.64 allows a remote attacker to execute ar…

  • ==0.0.64
- -
CVE-2024-3571 71615

langchain-ai/langchain is vulnerable to path traversal due to imprope…

  • <0.0.353
- -
CVE-2023-32786 62143

Langchain 0.0.329 includes a fix for CVE-2023-32786: Server-Side Requ…

  • <0.0.329
HIGH 7.5
CVE-2023-39659 60433

Affected versions of langchain allow a remote attacker to execute arb…

  • <0.0.325
CRITICAL 9.8
CVE-2023-46229 65233

LangChain before 0.0.317 allows SSRF via document_loaders/recursive_u…

  • <0.0.317
HIGH 8.8
CVE-2023-36281 71616

An issue in langchain v.0.0.171 allows a remote attacker to execute a…

  • <0.0.312
CRITICAL 9.8
PVE-2023-61536 61536

Langchain 0.0.306 includes a fix for a code injection vulnerability. …

  • <0.0.306
- -
CVE-2023-36258 59294

Affected versions of Langchain allow an attacker to execute arbitrary…

  • <0.0.247
CRITICAL 9.8
CVE-2023-34541 59347

Langchain 0.0.247 includes a fix for CVE-2023-34541: Arbitrary code e…

  • <0.0.247
CRITICAL 9.8
CVE-2023-36189 60080

Langchain 0.0.247 includes a fix for CVE-2023-36189: SQL injection vu…

  • <0.0.247
HIGH 7.5
CVE-2023-39631 71618

An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker …

  • <=0.0.245
CRITICAL 9.8
CVE-2023-36188 59363

Langchain 0.0.236 includes a fix for an Arbitrary Code Execution vuln…

  • <0.0.236
CRITICAL 9.8
CVE-2023-36095 60218

Langchain 0.0.236 includes a fix for an Arbitrary Code Execution vuln…

  • <0.0.236
CRITICAL 9.8
CVE-2023-38896 65036

An issue in Harrison Chase langchain v.0.0.194 and before allows a re…

  • <0.0.236
CRITICAL 9.8
CVE-2023-38860 65035

An issue in LangChain v.0.0.231 allows a remote attacker to execute a…

  • <=0.0.231
CRITICAL 9.8
CVE-2023-34540 59322

Langchain 0.0.225 includes a fix for an arbitrary code execution vuln…

  • <0.0.225
CRITICAL 9.8
PVE-2024-99901 64703

An issue in langchain v.0.0.199 allows an attacker to execute arbitra…

  • ==0.0.199
- -
CVE-2023-29374 54895

LangChain 0.0.142 includes a fix for CVE-2023-29374: The LLMMathChain…

  • <0.0.142
CRITICAL 9.8
CVE-2023-44467 71617

langchain_experimental 0.0.14 allows an attacker to bypass the CVE-20…

  • <=0.0.14
CRITICAL 9.8
CVE-2024-1455 66962

Langchains 0.1.14 updates its dependency 'langchain-core' in poetry.l…

  • >=0,<0.1.14
- -