Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:39 a.m.22 views

CVE-2024-27444

langchainexperimental aka LangChain Experimental in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-44467 fix and execute arbitrary code via the import, subclasses, builtins, globals, getattribute, bases, mro, or base attribute in Python code. These are not prohibited by...

9.8CVSS9.7AI score0.00943EPSS
Exploits0References1
OSV
OSV
added 2024/06/16 3:30 p.m.3 views

GHSA-WMVM-9VQV-5QPP langchain_experimental Code Execution via Python REPL access

langchainexperimental aka LangChain Experimental before 0.0.61 for LangChain provides Python REPL access without an opt-in step. NOTE; this issue exists because of an incomplete fix for CVE-2024-27444...

7.8CVSS5.8AI score0.00225EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2024/06/16 3:30 p.m.39 views

langchain_experimental Code Execution via Python REPL access

langchainexperimental aka LangChain Experimental before 0.0.61 for LangChain provides Python REPL access without an opt-in step. NOTE; this issue exists because of an incomplete fix for CVE-2024-27444...

7.8CVSS6.8AI score0.00225EPSS
Exploits0References6Affected Software1
PyPA
PyPA
added 2024/06/16 3:15 p.m.9 views

PYSEC-2024-53

langchainexperimental aka LangChain Experimental before 0.0.61 for LangChain provides Python REPL access without an opt-in step. NOTE; this issue exists because of an incomplete fix for CVE-2024-27444...

9.8CVSS7AI score0.00766EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2024/02/26 4:28 p.m.31 views

CVE-2024-27444

langchainexperimental aka LangChain Experimental in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-44467 fix and execute arbitrary code via the import, subclasses, builtins, globals, getattribute, bases, mro, or base attribute in Python code. These are not prohibited by...

9.8CVSS9.7AI score0.00766EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/26 12:0 a.m.52 views

CVE-2024-27444

langchainexperimental aka LangChain Experimental in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-44467 fix and execute arbitrary code via the import, subclasses, builtins, globals, getattribute, bases, mro, or base attribute in Python code. These are not prohibited by...

9.9AI score0.00766EPSS
Exploits0References1
OSV
OSV
added 2024/02/26 12:0 a.m.21 views

CVE-2024-27444

langchainexperimental aka LangChain Experimental in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-44467 fix and execute arbitrary code via the import, subclasses, builtins, globals, getattribute, bases, mro, or base attribute in Python code. These are not prohibited by...

9.8CVSS8AI score0.00766EPSS
Exploits0References3
CVE
CVE
added 2024/02/26 12:0 a.m.3762 views

CVE-2024-27444

The CVE-2024-27444 entry applies to langchain_experimental (LangChain Experimental) in LangChain prior to 0.1.8, where an attacker can bypass the fixes for CVE-2023-44467 and execute arbitrary Python code via privileged attributes (import , subclasses , builtins , globals , getattribute , bases ,...

9.8CVSS9.5AI score0.00766EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder