Langchain

Latest version: v0.3.11

Vulnerabilities (25)

CVE/PVE	Vulnerability ID	Advisory	Affected versions	Severity	Severity Score
CVE-2024-27444	65703	langchain_experimental (aka LangChain Experimental) in LangChain befo…	<0.1.8	-	-
CVE-2024-21503	70875	Langchain version 0.1.14 addresses CVE-2024-21503, updating the "blac…	<0.1.14	-	-
CVE-2024-28088	66051	Langchain addresses path traversal vulnerability CVE-2024-28088 by de…	<0.1.12	-	-
CVE-2024-0243	65692	In versions of Langchain-ai before 0.1.0, a vulnerability exists wher…	<0.1.0	-	-
PVE-2024-99902	64702	SQL injection vulnerability in langchain v.0.0.64 allows a remote att…	==0.0.64	-	-
PVE-2024-99903	64701	An issue in langchain v.0.0.64 allows a remote attacker to execute ar…	==0.0.64	-	-
CVE-2024-3571	71615	langchain-ai/langchain is vulnerable to path traversal due to imprope…	<0.0.353	-	-
CVE-2023-32786	62143	Langchain 0.0.329 includes a fix for CVE-2023-32786: Server-Side Requ…	<0.0.329	HIGH	7.5
CVE-2023-39659	60433	Affected versions of langchain allow a remote attacker to execute arb…	<0.0.325	CRITICAL	9.8
CVE-2023-46229	65233	LangChain before 0.0.317 allows SSRF via document_loaders/recursive_u…	<0.0.317	HIGH	8.8
CVE-2023-36281	71616	An issue in langchain v.0.0.171 allows a remote attacker to execute a…	<0.0.312	CRITICAL	9.8
PVE-2023-61536	61536	Langchain 0.0.306 includes a fix for a code injection vulnerability. …	<0.0.306	-	-
CVE-2023-36258	59294	Affected versions of Langchain allow an attacker to execute arbitrary…	<0.0.247	CRITICAL	9.8
CVE-2023-34541	59347	Langchain 0.0.247 includes a fix for CVE-2023-34541: Arbitrary code e…	<0.0.247	CRITICAL	9.8
CVE-2023-36189	60080	Langchain 0.0.247 includes a fix for CVE-2023-36189: SQL injection vu…	<0.0.247	HIGH	7.5
CVE-2023-39631	71618	An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker …	<=0.0.245	CRITICAL	9.8
CVE-2023-36188	59363	Langchain 0.0.236 includes a fix for an Arbitrary Code Execution vuln…	<0.0.236	CRITICAL	9.8
CVE-2023-36095	60218	Langchain 0.0.236 includes a fix for an Arbitrary Code Execution vuln…	<0.0.236	CRITICAL	9.8
CVE-2023-38896	65036	An issue in Harrison Chase langchain v.0.0.194 and before allows a re…	<0.0.236	CRITICAL	9.8
CVE-2023-38860	65035	An issue in LangChain v.0.0.231 allows a remote attacker to execute a…	<=0.0.231	CRITICAL	9.8
CVE-2023-34540	59322	Langchain 0.0.225 includes a fix for an arbitrary code execution vuln…	<0.0.225	CRITICAL	9.8
PVE-2024-99901	64703	An issue in langchain v.0.0.199 allows an attacker to execute arbitra…	==0.0.199	-	-
CVE-2023-29374	54895	LangChain 0.0.142 includes a fix for CVE-2023-29374: The LLMMathChain…	<0.0.142	CRITICAL	9.8
CVE-2023-44467	71617	langchain_experimental 0.0.14 allows an attacker to bypass the CVE-20…	<=0.0.14	CRITICAL	9.8
CVE-2024-1455	66962	Langchains 0.1.14 updates its dependency 'langchain-core' in poetry.l…	>=0,<0.1.14	-	-