Lucene search
MitreCVELIST:CVE-2023-44467HistoryOct 09, 2023 - 12:00 a.m.
CVE-2023-44467
2023-10-0900:00:00
mitre
www.cve.org
8
langchain experimental
bypassing
cve-2023-36258
execute arbitrary code
python
pal_chain/base.py
langchain_experimental (aka LangChain Experimental) in LangChain before 0.0.306 allows an attacker to bypass the CVE-2023-36258 fix and execute arbitrary code via import in Python code, which is not prohibited by pal_chain/base.py.
Related
osv
osv
CVE-2023-44467
2023-10-09 20:15:10
langchain_experimental vulnerable to arbitrary code execution via PALChain in the python exec method
2023-10-09 21:30:27
PYSEC-2023-194
2023-10-09 20:15:00
nvd
nvd
cve
cve
veracode
veracode
Code Injection
2023-10-11 06:12:48
Remote Code Execution (RCE)
2023-07-11 01:25:11
prion
prion
Design/Logic Flaw
2023-10-09 20:15:00
Code injection
2023-07-03 21:15:00
Authentication flaw
2024-02-26 16:28:00
github
github
langchain_experimental vulnerable to arbitrary code execution via PALChain in the python exec method
2023-10-09 21:30:27
langchain arbitrary code execution vulnerability
2023-07-03 21:30:57
LangChain Experimental vulnerable to arbitrary code execution
2024-02-26 18:30:31
nessus
nessus
LangChain Experimental Python Library <= 0.0.14 (CVE-2023-44467)
2024-09-11 00:00:00
cvelist
cvelist
CVE-2023-36258
2023-07-03 00:00:00
CVE-2024-27444
2024-02-26 00:00:00
vulnrichment
vulnrichment
CVE-2024-27444
2024-02-26 00:00:00
thn
thn
Researchers Identify Over 20 Supply Chain Vulnerabilities in MLOps Platforms
2024-08-26 10:31:00