CVE-2024-27444 | LangChain up to 0.1.7 langchain_experimental pal_chain/base.py code injection

Posted by Angelo Barbosa | Feb 26, 2024 | CVE

A vulnerability classified as critical has been found in LangChain up to 0.1.7. This affects an unknown part of the file pal_chain/base.py of the component langchain_experimental. The manipulation leads to code injection.

This vulnerability is uniquely identified as CVE-2024-27444. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-27444 | LangChain up to 0.1.7 langchain_experimental pal_chain/base.py code injection

Related Posts

CVE-2024-20807 | Samsung Mobile Email prior 6.1.90.16 Intent information disclosure

CVE-2024-22025 | Node.js up to 18.19.0/20.11.0/21.6.1 Brotli fetch resource consumption

CVE-2024-41265 | Cortex 0.42.1 TLS Certificate Verification makeOperatorRequest information disclosure

CVE-2024-40037 | idcCMS 1.35 userScore_deal.php cross-site request forgery