Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2023/04/05 3:30 a.m.5 views

bashbuddy (>=0.2.0 <=0.2.1), boilerplate-x (>=0.1.1 <=0.2.8) +23 more potentially affected by CVE-2023-29374 via langchain (>=0.0.100 <=0.0.131)

langchain PYPI version =0.0.100, =0.2.0, =0.1.1, =0.0.0, =0.1.0, =0.0.1, =0.0.4, =10.9.15, =0.1.3, =0.3.0, =0.0.1, =0.0.13, =0.0.1, =0.0.40, =0.1.1, =0.0.1, =0.0.7 and more Source cves: CVE-2023-29374 Source advisory: OSV:GHSA-FPRP-P869-W6Q2...

9.8CVSS7.2AI score0.39653EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2023/04/05 2:15 a.m.13 views

bashbuddy (>=0.2.0 <=0.2.1), boilerplate-x (>=0.1.1 <=0.2.8) +23 more potentially affected by CVE-2023-29374 via langchain (>=0.0.100 <=0.0.131)

langchain PYPI version =0.0.100, =0.2.0, =0.1.1, =0.0.0, =0.1.0, =0.0.1, =0.0.4, =10.9.15, =0.1.3, =0.3.0, =0.0.1, =0.0.13, =0.0.1, =0.0.40, =0.1.1, =0.0.1, =0.0.7 and more Source cves: CVE-2023-29374 Source advisory: OSV:PYSEC-2023-18...

9.8CVSS7.2AI score0.39653EPSS
Exploits1
CVE
CVE
added 2023/04/05 12:0 a.m.82 views

CVE-2023-29374

CVE-2023-29374 affects LangChain up to version 0.0.131. The vulnerability lies in the LLMMathChain chain, enabling prompt injection that can execute arbitrary Python code via the built-in exec() method. The NVD/CVE data indicate a high-severity issue (CVSS v3.1: 9.8, CRITICAL) with network attack...

9.8CVSS9.7AI score0.39653EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/05 12:0 a.m.5 views

CVE-2023-29374

In LangChain through 0.0.131, the LLMMathChain chain allows prompt injection attacks that can execute arbitrary code via the Python exec method...

9.9AI score0.39653EPSS
Exploits1References4
OSV
OSV
added 2023/04/05 12:0 a.m.21 views

CVE-2023-29374

In LangChain through 0.0.131, the LLMMathChain chain allows prompt injection attacks that can execute arbitrary code via the Python exec method...

9.8CVSS10AI score0.39653EPSS
Exploits1References6
Rows per page
Query Builder