CVE-2024-1455 | langchain-ai LangChain XMLOutputParser xml entity expansion

Posted by Angelo Barbosa | Mar 26, 2024 | CVE

A vulnerability classified as problematic has been found in langchain-ai LangChain. This affects the function XMLOutputParser. The manipulation leads to xml entity expansion.

This vulnerability is uniquely identified as CVE-2024-1455. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-1455 | langchain-ai LangChain XMLOutputParser xml entity expansion

Related Posts

CVE-2024-1844 | RevivePress Plugin up to 1.5.6 on WordPress authorization

CVE-2024-3052 | Silabs Z-IP Gateway SDK prior 7.14.00 S2 Nonce Get Command Class unusual condition

CVE-2024-36241 | Mattermost up to 8.1.12/9.5.3/9.6.1 Playbook Add Slash Command access control

CVE-2024-37830 | Outline up to 0.76.1 redirect