CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2025/05/23 4:11 a.m.•8 views

CVE-2023-39631

An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary code via the evaluate function in the numexpr library...

9.8CVSS7.7AI score0.01322EPSS

Exploits1

OSV•added 2023/09/01 4:15 p.m.•31 views

CVE-2023-39631

An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary code via the evaluate function in the numexpr library...

9.8CVSS8.1AI score

Exploits0References2

Prion•added 2023/09/01 4:15 p.m.•33 views

Code injection

An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary code via the evaluate function in the numexpr library...

7.5CVSS9.7AI score0.01322EPSS

Exploits1References2Affected Software1

OSV•added 2023/09/01 4:15 p.m.•1 views

PYSEC-2023-163

An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary code via the evaluate function in the numexpr library...

9.8CVSS6.2AI score0.01322EPSS

Exploits1References7

CVE•added 2023/09/01 12:0 a.m.•130 views

CVE-2023-39631

LangChain (Langchain) v0.0.245 contains a remote code execution vulnerability in the evaluate function via the numexpr library. Root cause: improper neutralization/input handling in the evaluate path, enabling arbitrary code execution. Affected component/function: Langchain’s evaluate using numex...

9.8CVSS9.6AI score0.01322EPSS

Exploits1References2Affected Software1