A vulnerability, which was classified as critical, was found in langchain-ai LangSmith SDK up to 0.8.17. Affected by this issue is some unknown functionality of the component TracingMiddleware. The manipulation results in unrestricted upload.
This vulnerability is identified as CVE-2026-59152. The attack can be executed remotely. There is not any exploit available.