Headline

GHSA-2qmj-7962-cjq8: langchain arbitrary code execution vulnerability

An issue in langchain allows an attacker to execute arbitrary code via the PALChain in the python exec method.

1 year ago

langchain arbitrary code execution vulnerability

High severity GitHub Reviewed Published Jul 3, 2023 to the GitHub Advisory Database • Updated Jul 6, 2023

langchain_experimental 0.0.14 allows an attacker to bypass the CVE-2023-36258 fix and execute arbitrary code via the PALChain in the python exec method.

1 year ago

CVE

Open in Source

CVE-2023-36258: Prompt injection which leads to arbitrary code execution in `langchain.chains.PALChain` · Issue #5872 · hwchase17/langchain

An issue in langchain v.0.0.199 allows an attacker to execute arbitrary code via the PALChain in the python exec method.

1 year ago

CVE

Open in Source

#ubuntu #rce

ghsa: Latest News

GHSA-hxf5-99xg-86hw: cap-std doesn't fully sandbox all the Windows device filenames

1 hour ago

ghsa

GHSA-c2f5-jxjv-2hh8: Wasmtime doesn't fully sandbox all the Windows device filenames

1 hour ago

ghsa

GHSA-4cf2-cxp3-rjr7: HAPI FHIR XML External Entity (XXE) vulnerability

4 hours ago

ghsa

GHSA-v2qh-f584-6hj8: @workos-inc/authkit-remix refresh tokens are logged when the debug flag is enabled

5 hours ago

ghsa

GHSA-5wmg-9cvh-qw25: @workos-inc/authkit-nextjs refresh tokens are logged when the debug flag is enabled

5 hours ago

ghsa

Headline

GHSA-2qmj-7962-cjq8: langchain arbitrary code execution vulnerability

Related news

ghsa: Latest News