PyPI: langchain-core
CVE-2024-10940
Safety vulnerability ID: SFTY-20250320-12422
Safety legacy ID: pyup.io-76276
A vulnerability in langchain-core versions >=0.1.17,<0.1.53, >=0.2.0,<0.2.43, and >=0.3.0,<0.3.15 allows unauthorized users to read arbitrary files from the host file system. The issue arises from the ability to create langchaincore.prompts.ImagePromptTemplate's (and by extension langchaincore.prompts.ChatPromptTemplate's) with input variables that can read any user-specified path from the server file system. If the outputs of these prompt templates are exposed to the user, either directly or through downstream model outputs, it can lead to the exposure of sensitive information.
Overview
langchain-core allows unauthorized users to read arbitrary files from the host file system
Advisory
A vulnerability in langchain-core versions >=0.1.17,<0.1.53, >=0.2.0,<0.2.43, and >=0.3.0,<0.3.15 allows unauthorized users to read arbitrary files from the host file system. The issue arises from the ability to create langchaincore.prompts.ImagePromptTemplate's (and by extension langchaincore.prompts.ChatPromptTemplate's) with input variables that can read any user-specified path from the server file system. If the outputs of these prompt templates are exposed to the user, either directly or through downstream model outputs, it can lead to the exposure of sensitive information.
Affected Package
Also affects
---
How to Fix
Mitigation and Workarounds
---
Vulnerable Functions
Functions linked to known vulnerabilities.
References
- https://getsafety.com/vulnerabilities/SFTY-20250320-12422/CVE-2024-10940
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10940
- https://github.com/advisories/GHSA-5chr-fjjv-38qv
- https://nvd.nist.gov/vuln/detail/CVE-2024-10940
- https://github.com/langchain-ai/langchain/commit/c1e742347f9701aadba8920e4d1f79a636e50b68
- https://huntr.com/bounties/be1ee1cb-2147-4ff4-a57b-b6045271cf27
- https://github.com/langchain-ai/langchain/commit/7d481f10102f43559cc57bcad7eba291067939ee
- https://github.com/langchain-ai/langchain/commit/e711034713259ae448981bc0fd1d7a5671499c31
- https://github.com/advisories/GHSA-5chr-fjjv-38qv
Verified by Safety
Our Cybersecurity Intelligence Team reviewed this vulnerability. We combine public data with our own research to find issues not yet reported to public sources.
Learn more