CVE-2023-32786

Published: Oct 20, 2023

Modified: Sep 12, 2024

PUBLISHED

Description

In Langchain through 0.0.155, prompt injection allows an attacker to force the service to retrieve data from an arbitrary URL, essentially providing SSRF and potentially injecting content into downstream tasks.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://gist.github.com/rharang/d265f46fc3161b31ac2e81db44d662e1

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-32786

Description

Affected Products

References