Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:0 a.m.10 views

CVE-2023-36095

An issue in Harrison Chase langchain v.0.0.194 allows an attacker to execute arbitrary code via the python exec calls in the PALChain, affected functions include frommathprompt and fromcoloredobjectprompt...

9.8CVSS7.7AI score0.01062EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2023/08/05 3:30 a.m.4 views

agent-actors (=0.1.0), agent-reader (>=0.2.1 <=0.2.2) +162 more potentially affected by CVE-2023-36095 via langchain (>=0.0.100 <=0.0.235)

langchain PYPI version =0.0.100, =0.2.1, =0.1.0, =0.1.5, =0.0.1, =0.0.1, =0.0.1, =0.0.5, =0.0.14, =0.1.9, =0.0.33, =0.1.0a0, =0.2.0, =0.1.3, =0.1.5 and more Source cves: CVE-2023-36095 Source advisory: OSV:GHSA-GWQQ-6VQ7-5J86...

9.8CVSS7.2AI score0.01062EPSS
Exploits1
NVD
NVD
added 2023/08/05 3:15 a.m.24 views

CVE-2023-36095

An issue in Harrison Chase langchain v.0.0.194 allows an attacker to execute arbitrary code via the python exec calls in the PALChain, affected functions include frommathprompt and fromcoloredobjectprompt...

9.8CVSS9.7AI score0.01062EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/08/05 12:0 a.m.16 views

CVE-2023-36095

An issue in Harrison Chase langchain v.0.0.194 allows an attacker to execute arbitrary code via the python exec calls in the PALChain, affected functions include frommathprompt and fromcoloredobjectprompt...

7.7AI score0.01062EPSS
Exploits1References2
CVE
CVE
added 2023/08/05 12:0 a.m.87 views

CVE-2023-36095

LangChain v0.0.194 is affected by a code-injection vulnerability (CVE-2023-36095) via the PALChain, enabling an attacker to execute arbitrary Python code through exec calls in from_math_prompt and from_colored_object_prompt. Reported impacts include high severity with potential full compromise; C...

9.8CVSS9.6AI score0.01062EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder