Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:50 a.m.10 views

CVE-2023-32786

In Langchain through 0.0.155, prompt injection allows an attacker to force the service to retrieve data from an arbitrary URL, essentially providing SSRF and potentially injecting content into downstream tasks...

7.5CVSS7.2AI score0.00585EPSS
Exploits0References1
Circl
Circl
added 2023/10/21 2:35 a.m.7 views

CVE-2023-32786

creationtimestamp| type| source ---|---|--- 2023-10-21 02:35:35+00:00| seen| https://t.me/cibsecurity/72724...

7.5CVSS7.3AI score0.00585EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2023/10/21 12:30 a.m.10 views

agent-actors (=0.1.0), agent-lab-sdk (>=0.1.7 <=0.1.16) +286 more potentially affected by CVE-2023-32786 via langchain (>=0.0.100 <=0.0.327)

langchain PYPI version =0.0.100, =0.1.7, =0.2.1, =0.1.0, =0.1.5, =0.0.2, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.1.8, =0.0.5, =0.0.14, =0.0.18 - athina =0.1.0 and more Source cves: CVE-2023-32786 Source advisory: OSV:GHSA-6H8P-4HX9-W66C...

7.5CVSS7.2AI score0.00585EPSS
Exploits0
CVE
CVE
added 2023/10/20 12:0 a.m.63 views

CVE-2023-32786

CVE-2023-32786 affects LangChain up to version 0.0.155, where prompt injection can cause SSRF by forcing the service to fetch data from an arbitrary URL and potentially inject content into downstream tasks. Remediation in the connected advisories points to upgrading beyond 0.0.329 (e.g., LangChai...

7.5CVSS7.6AI score0.00585EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/20 12:0 a.m.21 views

CVE-2023-32786

In Langchain through 0.0.155, prompt injection allows an attacker to force the service to retrieve data from an arbitrary URL, essentially providing SSRF and potentially injecting content into downstream tasks...

7.8AI score0.00585EPSS
Exploits0References1
Rows per page
Query Builder