langchain-experimental 0.0.18 vulnerabilities

Known vulnerabilities in the langchain-experimental package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
H Arbitrary Code Execution langchain-experimental is a package that holds experimental LangChain code, intended for research and experimental uses. Affected versions of this package are vulnerable to Arbitrary Code Execution when retrieving values from the database, the code will attempt to call 'eval' on all values. An attacker can exploit this vulnerability and execute arbitrary python code if they can control the input prompt and the server is configured with `VectorSQLDatabaseChain`. Notes: Impact on the Confidentiality, Integrity and Availability of the vulnerable component: Confidentiality: Code execution happens within the impacted component, in this case `langchain-experimental`, so all resources are necessarily accessible. Integrity: There is nothing protected by the impacted component inherently. Although anything returned from the component counts as 'information' for which the trustworthiness can be compromised. Availability: The loss of availability isn't caused by the attack itself, but it happens as a result during the attacker's post-exploitation steps. Impact on the Confidentiality, Integrity and Availability of the subsequent system: As a legitimate low-privileged user of the package (`PR:L`) the attacker does not have more access to data owned by the package as a result of this vulnerability than they did with normal usage (e.g. can query the DB). The unintended action that one can perform by breaking out of the app environment and exfiltrating files, making remote connections etc. happens during the post exploitation phase in the subsequent system - in this case, the OS. `AT:P`: An attacker needs to be able to influence the input prompt, whilst the server is configured with the `VectorSQLDatabaseChain` plugin. How to fix Arbitrary Code Execution? Upgrade `langchain-experimental` to version 0.0.21 or higher.	[0.0.15,0.0.21)
H Improper Access Control langchain-experimental is a package that holds experimental LangChain code, intended for research and experimental uses. Affected versions of this package are vulnerable to Improper Access Control due to the provision of Python REPL access without requiring an opt-in step. An attacker can gain unauthorized access or execute arbitrary code by exploiting this oversight. NOTE: This vulnerability derives from an incomplete fix for CVE-2024-27444. How to fix Improper Access Control? Upgrade `langchain-experimental` to version 0.0.61 or higher.	[,0.0.61)
C Arbitrary Code Execution langchain-experimental is a package that holds experimental LangChain code, intended for research and experimental uses. Affected versions of this package are vulnerable to Arbitrary Code Execution. via the `__import__`, `__subclasses__`, `__builtins__`, `__globals__`, `__getattribute__`, `__bases__`, `__mro__` or `__base__` attributes in Python code. Note: Code is clearly documented as being risky and the correct mitigation strategy is by executing the code in a sandboxed environment. How to fix Arbitrary Code Execution? Upgrade `langchain-experimental` to version 0.0.52 or higher.	[,0.0.52)
C Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') langchain-experimental is a package that holds experimental LangChain code, intended for research and experimental uses. Affected versions of this package are vulnerable to Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') via the `PALChain` in the `python exec` method. An attacker can bypass the fix for CVE-2023-36258 and execute arbitrary code by exploiting this vulnerability. How to fix Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')? Upgrade `langchain-experimental` to version 0.0.24 or higher.	[,0.0.24)

Vulnerability

Vulnerable Version

Arbitrary Code Execution

langchain-experimental is a package that holds experimental LangChain code, intended for research and experimental uses.

Affected versions of this package are vulnerable to Arbitrary Code Execution when retrieving values from the database, the code will attempt to call 'eval' on all values. An attacker can exploit this vulnerability and execute arbitrary python code if they can control the input prompt and the server is configured with VectorSQLDatabaseChain.

Notes:

Impact on the Confidentiality, Integrity and Availability of the vulnerable component:

Confidentiality: Code execution happens within the impacted component, in this case langchain-experimental, so all resources are necessarily accessible.

Integrity: There is nothing protected by the impacted component inherently. Although anything returned from the component counts as 'information' for which the trustworthiness can be compromised.

Availability: The loss of availability isn't caused by the attack itself, but it happens as a result during the attacker's post-exploitation steps.

Impact on the Confidentiality, Integrity and Availability of the subsequent system:

As a legitimate low-privileged user of the package (PR:L) the attacker does not have more access to data owned by the package as a result of this vulnerability than they did with normal usage (e.g. can query the DB). The unintended action that one can perform by breaking out of the app environment and exfiltrating files, making remote connections etc. happens during the post exploitation phase in the subsequent system - in this case, the OS.

AT:P: An attacker needs to be able to influence the input prompt, whilst the server is configured with the VectorSQLDatabaseChain plugin.

How to fix Arbitrary Code Execution?

Upgrade langchain-experimental to version 0.0.21 or higher.

[0.0.15,0.0.21)

Improper Access Control

langchain-experimental is a package that holds experimental LangChain code, intended for research and experimental uses.

Affected versions of this package are vulnerable to Improper Access Control due to the provision of Python REPL access without requiring an opt-in step. An attacker can gain unauthorized access or execute arbitrary code by exploiting this oversight.

NOTE:

This vulnerability derives from an incomplete fix for CVE-2024-27444.

How to fix Improper Access Control?

Upgrade langchain-experimental to version 0.0.61 or higher.

[,0.0.61)

Arbitrary Code Execution

langchain-experimental is a package that holds experimental LangChain code, intended for research and experimental uses.

Affected versions of this package are vulnerable to Arbitrary Code Execution. via the __import__, __subclasses__, __builtins__, __globals__, __getattribute__, __bases__, __mro__ or __base__ attributes in Python code.

Note: Code is clearly documented as being risky and the correct mitigation strategy is by executing the code in a sandboxed environment.

How to fix Arbitrary Code Execution?

Upgrade langchain-experimental to version 0.0.52 or higher.

[,0.0.52)

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

langchain-experimental is a package that holds experimental LangChain code, intended for research and experimental uses.

Affected versions of this package are vulnerable to Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') via the PALChain in the python exec method. An attacker can bypass the fix for CVE-2023-36258 and execute arbitrary code by exploiting this vulnerability.

How to fix Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')?

Upgrade langchain-experimental to version 0.0.24 or higher.

[,0.0.24)

langchain-experimental@0.0.18 vulnerabilities

Building applications with LLMs through composability

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities

How to fix?