Lucene search
K

18 matches found

NVD
NVD
added 6 days ago7 views

CVE-2026-54769

Langroid is a framework for building large-language-model-powered applications. Versions prior to 0.65.2 are vulnerable to a critical Sandbox Escape leading to Remote Code Execution RCE in its TableChatAgent and VectorStore capabilities. When these agents evaluate LLM-generated tool messages with...

10CVSS0.00912EPSS
Exploits0References1
NVD
NVD
added 6 days ago7 views

CVE-2026-54760

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.65.1, the SQLChatAgent SQL-injection mitigation, with default allowdangerousoperations=False, combines a raw-text regex blocklist DANGEROUSSQLPATTERNS with a sqlglot SELECT-only statement allowlist...

9.3CVSS0.00646EPSS
Exploits0References1
NVD
NVD
added 6 days ago5 views

CVE-2026-55615

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.65.5, Neo4jChatAgent passes LLM-generated Cypher queries straight to the Neo4j driver with no validation, no statement-type allowlist, and no opt-out gate. The query text is influenceable by prompt...

9.2CVSS0.00461EPSS
Exploits0References2
CVE
CVE
added last week9 views

CVE-2026-54771

Langroid prior to 0.65.3 is affected. A Langroid application exposing a chat interface to untrusted users may allow direct tool invocation via raw JSON payloads, even when tools are registered with use=False, handle=True. Root cause: the tool dispatch path in agent_response → handle_message → get...

8.1CVSS5.9AI score0.00392EPSS
Exploits0References1
CVE
CVE
added last week20 views

CVE-2026-54760

CVE-2026-54760: Langroid’s SQLChatAgent dangerous-function blocklist can be bypassed. Prior to version 0.65.1, the mitigation combines a raw-text regex (_DANGEROUS_SQL_PATTERNS) with a sqlglot-based SELECT-only allowlist. Attackers can defeat the regex using PostgreSQL forms such as quoted identi...

9.3CVSS6AI score0.00646EPSS
Exploits0References1
CVE
CVE
added last week13 views

CVE-2026-50180

Summary: CVE-2026-50180 in Langroid’s SQLChatAgent allows arbitrary PostgreSQL file reads due to an incomplete DANGEROUS_SQL_PATTERNS blocklist. The blocklist misses several pg_read * and related functions (e.g., pg_read_file, pg_stat_file, pg_ls_logdir, pg_ls_waldir, pg_current_logfile) and does...

8.7CVSS6.1AI score0.00686EPSS
Exploits0References2
CVE
CVE
added last week27 views

CVE-2026-55615

Langroid CVE-2026-55615 affects the Neo4jChatAgent path, where LLM-generated Cypher queries are sent unvalidated to the Neo4j driver prior to version 0.65.5. Connected docs describe a prompt-injection risk enabling read/write/destroy of graph data and, with APOC or dbms.security, potential OS com...

9.2CVSS6AI score0.00461EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/06 1:25 a.m.4 views

CVE-2026-25481

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.59.32, there is a bypass to the fix for CVE-2025-46724. TableChatAgent can call pandaseval tool to evaluate the expression. There is a WAF in langroid/utils/pandasutils.py introduced to block code...

9.8CVSS5.8AI score0.00741EPSS
Exploits2References1
Cvelist
Cvelist
added 2026/02/04 8:3 p.m.31 views

CVE-2026-25481 Langroid has WAF Bypass Leading to RCE in TableChatAgent

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.59.32, there is a bypass to the fix for CVE-2025-46724. TableChatAgent can call pandaseval tool to evaluate the expression. There is a WAF in langroid/utils/pandasutils.py introduced to block code...

9.4CVSS0.00648EPSS
Exploits1References3
OSV
OSV
added 2026/02/04 8:3 p.m.6 views

CVE-2026-25481 Langroid has WAF Bypass Leading to RCE in TableChatAgent

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.59.32, there is a bypass to the fix for CVE-2025-46724. TableChatAgent can call pandaseval tool to evaluate the expression. There is a WAF in langroid/utils/pandasutils.py introduced to block code...

9.4CVSS5.9AI score0.00648EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-13410

Malicious code in bioql PyPI...

9.1CVSS6.3AI score0.00545EPSS
Exploits1References5
NVD
NVD
added 2025/05/20 6:15 p.m.18 views

CVE-2025-46724

Langroid is a Python framework to build large language model LLM-powered applications. Prior to version 0.53.15, TableChatAgent uses pandas eval. If fed by untrusted user input, like the case of a public-facing LLM application, it may be vulnerable to code injection. Langroid 0.53.15 sanitizes...

9.8CVSS0.00741EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/05/20 5:24 p.m.7 views

CVE-2025-46725 Langroid has a Code Injection vulnerability in LanceDocChatAgent through vector_store

Langroid is a Python framework to build large language model LLM-powered applications. Prior to version 0.53.15, LanceDocChatAgent uses pandas eval through computefromdocs. As a result, an attacker may be able to make the agent run malicious commands through QueryPlan.dataframecalc compromising t...

9.3CVSS6.6AI score0.00482EPSS
Exploits0References2
OSV
OSV
added 2025/05/20 5:24 p.m.19 views

CVE-2025-46725 Langroid has a Code Injection vulnerability in LanceDocChatAgent through vector_store

Langroid is a Python framework to build large language model LLM-powered applications. Prior to version 0.53.15, LanceDocChatAgent uses pandas eval through computefromdocs. As a result, an attacker may be able to make the agent run malicious commands through QueryPlan.dataframecalc compromising t...

9.3CVSS6.8AI score0.00482EPSS
Exploits0References4
OSV
OSV
added 2025/05/20 5:22 p.m.6 views

CVE-2025-46724 Langroid has a Code Injection vulnerability in TableChatAgent

Langroid is a Python framework to build large language model LLM-powered applications. Prior to version 0.53.15, TableChatAgent uses pandas eval. If fed by untrusted user input, like the case of a public-facing LLM application, it may be vulnerable to code injection. Langroid 0.53.15 sanitizes...

9.8CVSS6.8AI score0.00741EPSS
Exploits1References4
NVD
NVD
added 2025/05/05 8:15 p.m.53 views

CVE-2025-46726

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.53.4, a LLM application leveraging XMLToolMessage class may be exposed to untrusted XML input that could result in DoS and/or exposing local files with sensitive information. Version 0.53.4 fixes th...

9.1CVSS0.00545EPSS
Exploits1References3
CVE
CVE
added 2025/05/05 7:21 p.m.74 views

CVE-2025-46726

Langroid prior to 0.53.4 is vulnerable via the XMLToolMessage class to untrusted XML input, enabling DoS and potential disclosure of local files. The issue is mitigated by upgrading to version 0.53.4, which initializes the XML parser with safeguards against XXE, billionaire laughs, and external D...

9.1CVSS6.3AI score0.00545EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2025/05/05 7:21 p.m.21 views

CVE-2025-46726 Langroid Vulnerable to XXE Injection via XMLToolMessage

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.53.4, a LLM application leveraging XMLToolMessage class may be exposed to untrusted XML input that could result in DoS and/or exposing local files with sensitive information. Version 0.53.4 fixes th...

8.8CVSS6.2AI score0.00545EPSS
Exploits1References5
Rows per page
Query Builder