Show filters
27 Total Results
Displaying 21-27 of 27
Sort by:
Attacker Value
Unknown
CVE-2023-36095
Disclosure Date: August 05, 2023 (last updated October 08, 2023)
An issue in Harrison Chase langchain v.0.0.194 allows an attacker to execute arbitrary code via the python exec calls in the PALChain, affected functions include from_math_prompt and from_colored_object_prompt.
0
Attacker Value
Unknown
CVE-2023-36189
Disclosure Date: July 06, 2023 (last updated December 06, 2023)
SQL injection vulnerability in langchain before v0.0.247 allows a remote attacker to obtain sensitive information via the SQLDatabaseChain component.
0
Attacker Value
Unknown
CVE-2023-36188
Disclosure Date: July 06, 2023 (last updated October 08, 2023)
An issue in langchain v.0.0.64 allows a remote attacker to execute arbitrary code via the PALChain parameter in the Python exec method.
0
Attacker Value
Unknown
CVE-2023-36258
Disclosure Date: July 03, 2023 (last updated February 26, 2024)
An issue in LangChain before 0.0.236 allows an attacker to execute arbitrary code because Python code with os.system, exec, or eval can be used.
0
Attacker Value
Unknown
CVE-2023-34541
Disclosure Date: June 20, 2023 (last updated October 08, 2023)
Langchain 0.0.171 is vulnerable to Arbitrary code execution in load_prompt.
0
Attacker Value
Unknown
CVE-2023-34540
Disclosure Date: June 14, 2023 (last updated March 14, 2024)
Langchain before v0.0.225 was discovered to contain a remote code execution (RCE) vulnerability in the component JiraAPIWrapper (aka the JIRA API wrapper). This vulnerability allows attackers to execute arbitrary code via crafted input. As noted in the "releases/tag" reference, a fix is available.
0
Attacker Value
Unknown
CVE-2023-29374
Disclosure Date: April 05, 2023 (last updated October 08, 2023)
In LangChain through 0.0.131, the LLMMathChain chain allows prompt injection attacks that can execute arbitrary code via the Python exec method.
0
