Lucene search
K

114 matches found

Github Security Blog
Github Security Blog
added 2026/02/25 10:59 p.m.11 views

LangGraph: BaseCache Deserialization of Untrusted Data may lead to Remote Code Execution

Context A Remote Code Execution vulnerability exists in LangGraph's caching layer when applications enable cache backends that inherit from BaseCache and opt nodes into caching via CachePolicy. Prior to langgraph-checkpoint 4.0.0, BaseCache defaults to JsonPlusSerializerpicklefallback=True. When...

6.6CVSS6.7AI score0.00698EPSS
Exploits0References6Affected Software1
vulnersOsv
vulnersOsv
added 2026/02/25 10:59 p.m.5 views

a-mailx (=0.1.0), a2a-client-handler (=0.1.0) +375 more potentially affected by CVE-2026-27794 via langgraph-checkpoint (>=1.0.12 <=3.0.1)

langgraph-checkpoint PYPI version =1.0.12, =0.1.5, =0.1.0, =0.1.1, =0.1.1, =0.0.1, =2.1.7, =0.0.2, =0.1.1, =0.2.0a1, =0.2.5a2, =0.0.3rc0, =0.0.3rc4 and more Source cves: CVE-2026-27794 Source advisory: OSV:GHSA-MHR3-J7M5-C7C9...

6.6CVSS7.2AI score0.00698EPSS
Exploits0
OSV
OSV
added 2026/02/25 10:59 p.m.8 views

GHSA-MHR3-J7M5-C7C9 LangGraph: BaseCache Deserialization of Untrusted Data may lead to Remote Code Execution

Context A Remote Code Execution vulnerability exists in LangGraph's caching layer when applications enable cache backends that inherit from BaseCache and opt nodes into caching via CachePolicy. Prior to langgraph-checkpoint 4.0.0, BaseCache defaults to JsonPlusSerializerpicklefallback=True. When...

6.6CVSS6.8AI score0.00698EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/02/25 8:17 p.m.7 views

CVE-2026-27794

A flaw was found in LangGraph Checkpoint. This vulnerability allows a remote attacker with write access to the cache backend to achieve remote code execution. This occurs when applications enable cache backends that inherit from BaseCache and opt nodes into caching via CachePolicy. If msgpack...

6.6CVSS6.5AI score0.00698EPSS
Exploits0References7
NVD
NVD
added 2026/02/25 6:23 p.m.7 views

CVE-2026-27794

LangGraph Checkpoint defines the base interface for LangGraph checkpointers. Prior to version 4.0.0, a Remote Code Execution vulnerability exists in LangGraph's caching layer when applications enable cache backends that inherit from BaseCache and opt nodes into caching via CachePolicy. Prior to...

6.6CVSS0.00698EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/02/25 4:53 p.m.23 views

CVE-2026-27794 LangGraph: BaseCache Deserialization of Untrusted Data may lead to Remote Code Execution

LangGraph Checkpoint defines the base interface for LangGraph checkpointers. Prior to version 4.0.0, a Remote Code Execution vulnerability exists in LangGraph's caching layer when applications enable cache backends that inherit from BaseCache and opt nodes into caching via CachePolicy. Prior to...

6.6CVSS0.00698EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/25 4:53 p.m.7 views

CVE-2026-27794

LangGraph Checkpoint defines the base interface for LangGraph checkpointers. Prior to version 4.0.0, a Remote Code Execution vulnerability exists in LangGraph's caching layer when applications enable cache backends that inherit from BaseCache and opt nodes into caching via CachePolicy. Prior to...

6.6CVSS5.8AI score0.00698EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/25 4:53 p.m.5 views

CVE-2026-27794 LangGraph: BaseCache Deserialization of Untrusted Data may lead to Remote Code Execution

LangGraph Checkpoint defines the base interface for LangGraph checkpointers. Prior to version 4.0.0, a Remote Code Execution vulnerability exists in LangGraph's caching layer when applications enable cache backends that inherit from BaseCache and opt nodes into caching via CachePolicy. Prior to...

6.6CVSS5.8AI score0.00698EPSS
Exploits0References4
CVE
CVE
added 2026/02/25 4:53 p.m.86 views

CVE-2026-27794

LangGraph CVE-2026-27794 affects the Checkpoint component prior to version 4.0.0 where the BaseCache default serializer (JsonPlusSerializer with pickle_fallback) can deserialize attacker-supplied bytes from a cache backend if the application enables caching and nodes opt into CachePolicy. An atta...

6.6CVSS5.8AI score0.00698EPSS
Exploits0References4
OSV
OSV
added 2026/02/25 4:53 p.m.5 views

CVE-2026-27794 LangGraph: BaseCache Deserialization of Untrusted Data may lead to Remote Code Execution

LangGraph Checkpoint defines the base interface for LangGraph checkpointers. Prior to version 4.0.0, a Remote Code Execution vulnerability exists in LangGraph's caching layer when applications enable cache backends that inherit from BaseCache and opt nodes into caching via CachePolicy. Prior to...

6.6CVSS5.9AI score0.00698EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.8 views

langgraph 代码问题漏洞

Langgraph is a large-scale model framework developed by LangChain. Versions of Langgraph prior to 4.0.0 had code-related vulnerabilities. These vulnerabilities stemmed from the caching layer’s ability to deserialize cached values using pickle.loads when msgpack serialization fails, potentially...

6.6CVSS7.6AI score0.00698EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.8 views

PT-2026-21967

Name of the Vulnerable Software and Affected Versions LangGraph versions prior to 4.0.0 Description A Remote Code Execution issue exists in LangGraph's caching layer when applications enable cache backends inheriting from BaseCache and opt nodes into caching via CachePolicy. Prior to version 4.0....

6.6CVSS5.6AI score0.00698EPSS
Exploits0References13
GithubExploit
GithubExploit
added 2026/02/22 11:28 p.m.549 views

Exploit for CVE-2025-67644

CVE-2025-67644 PoC – LangGraph SQLite Checkpoint SQL Injection...

7.3CVSS6.2AI score0.02073EPSS
Exploits2
Cvelist
Cvelist
added 2026/02/20 9:6 p.m.24 views

CVE-2026-27022 RediSearch Query Injection in @langchain/langgraph-checkpoint-redis

@langchain/langgraph-checkpoint-redis is the Redis checkpoint and store implementation for LangGraph. A query injection vulnerability exists in the @langchain/langgraph-checkpoint-redis package's filter handling. The RedisSaver and ShallowRedisSaver classes construct RediSearch queries by directl...

6.5CVSS0.03722EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2026/02/18 10:40 p.m.7 views

@langgraph-js/pure-graph (>=1.3.0 <=1.5.3), @langgraph-js/sdk (>=3.0.0 <=3.1.0) +1 more potentially affected by CVE-2026-27022 via @langchain/langgraph-checkpoint-redis (=0.0.2)

@langchain/langgraph-checkpoint-redis NPM version =0.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on @langchain/langgraph-checkpoint-redis and may be impacted: - @langgraph-js/pure-graph =1.3.0, =3.0.0, =3.0.0, =3.0.1 Source cves: CVE-2026-27022...

6.5CVSS5.8AI score0.03722EPSS
Exploits0
Veracode
Veracode
added 2025/12/13 7:39 a.m.10 views

SQL Injection

LangGraph SQLite Checkpoint is vulnerable to SQL injection. The vulnerability is due to unsafe construction of SQL queries using unvalidated metadata filter keys, where attacker-controlled keys are interpolated directly into SQL f-strings in the checkpoint search logic, allowing manipulation of...

7.8CVSS7.6AI score0.02073EPSS
Exploits2References2Affected Software1
Veracode
Veracode
added 2025/12/13 7:33 a.m.7 views

SQL Injection

langgraph-checkpoint-sqlite is vulnerable to SQL Injection. The vulnerability is due to use of direct string concatenation without proper parameterization in database queries, which allows an attacker to inject arbitrary SQL and bypass access controls...

7.3CVSS7.3AI score0.00178EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/11 11:55 p.m.9 views

CVE-2025-67644

LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB both sync and async, via aiosqlite. Versions 3.0.0 and below are vulnerable to SQL injection through the checkpoint implementation. Checkpoint allows attackers to manipulate SQL queries through...

7.3CVSS7.9AI score0.02073EPSS
Exploits2References1
NVD
NVD
added 2025/12/11 12:16 a.m.10 views

CVE-2025-67644

LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB both sync and async, via aiosqlite. Versions 3.0.0 and below are vulnerable to SQL injection through the checkpoint implementation. Checkpoint allows attackers to manipulate SQL queries through...

7.8CVSS0.02073EPSS
Exploits2References2
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.10 views

langgraph SQL注入漏洞

langgraph is a large modeling framework open source by LangChain. An SQL injection vulnerability exists in langgraph 3.0.0 and earlier versions, which stems from an unvalidated metadata filter key that could lead to an SQL injection attack...

7.8CVSS7.5AI score0.02073EPSS
Exploits2References3
Rows per page
Query Builder