CVE-2024-28088

Published: Mar 3, 2024

Modified: Aug 26, 2024

PUBLISHED

Description

LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to control the final part of the path parameter in a load_chain call. This bypasses the intended behavior of loading configurations only from the hwchase17/langchain-hub GitHub repository. The outcome can be disclosure of an API key for a large language model online service, or remote code execution. (A patch is available as of release 0.1.29 of langchain-core.)

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/PinkDraconian/PoC-Langchain-RCE/blob/main/README.md

https://github.com/langchain-ai/langchain/blob/f96dd57501131840b713ed7c2e86cbf1ddc2761f/libs/core/langchain_core/utils/loading.py

https://github.com/langchain-ai/langchain/pull/18600

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-28088

Description

Affected Products

References