{"ok":true,"source":"osv.dev","source_license":"Apache-2.0 (schema); upstream advisories under their own terms","capturedAt":"2026-07-03T05:46:02.755Z","package_count":78,"records":[{"package":"anthropic","ecosystem":"PyPI","category":"llm-sdk","description":"Anthropic's official Claude SDK","homepage":"https://github.com/anthropics/anthropic-sdk-python","fetched_at":"2026-07-03T05:45:54.865Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"GHSA-w828-4qhx-vxx3","latest_published":"2026-04-01T21:17:34Z","advisories":[{"id":"GHSA-w828-4qhx-vxx3","aliases":["CVE-2026-34452"],"summary":"Claude SDK for Python: Memory Tool Path Validation Race Condition Allows Sandbox Escape","published":"2026-04-01T21:17:34Z","modified":"2026-05-05T16:12:25.333467Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.86.0","0.86.0-0.87.0"],"first_patched_version":"0.87.0","reference_urls":["https://github.com/anthropics/anthropic-sdk-python/security/advisories/GHSA-w828-4qhx-vxx3","https://nvd.nist.gov/vuln/detail/CVE-2026-34452","https://github.com/anthropics/anthropic-sdk-python/commit/6599043eee6e86dce16953fcd1fd828052052be6","https://github.com/anthropics/anthropic-sdk-python","https://github.com/anthropics/anthropic-sdk-python/releases/tag/v0.87.0"]},{"id":"GHSA-q5f5-3gjm-7mfm","aliases":["CVE-2026-34450"],"summary":"Claude SDK for Python has Insecure Default File Permissions in Local Filesystem Memory Tool","published":"2026-04-01T21:15:30Z","modified":"2026-04-17T06:29:14.883343982Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.86.0","0.86.0-0.87.0"],"first_patched_version":"0.87.0","reference_urls":["https://github.com/anthropics/anthropic-sdk-python/security/advisories/GHSA-q5f5-3gjm-7mfm","https://nvd.nist.gov/vuln/detail/CVE-2026-34450","https://github.com/anthropics/anthropic-sdk-python/commit/715030ceb4d6dd8d3546e999c680e29532bf1255","https://github.com/anthropics/anthropic-sdk-python","https://github.com/anthropics/anthropic-sdk-python/releases/tag/v0.87.0"]}]},{"package":"openai","ecosystem":"PyPI","category":"llm-sdk","description":"OpenAI Python SDK","homepage":"https://github.com/openai/openai-python","fetched_at":"2026-07-03T05:45:54.777Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"google-generativeai","ecosystem":"PyPI","category":"llm-sdk","description":"Google Generative AI Python SDK","homepage":null,"fetched_at":"2026-07-03T05:45:54.770Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"mistralai","ecosystem":"PyPI","category":"llm-sdk","description":"Mistral AI Python SDK","homepage":null,"fetched_at":"2026-07-03T05:45:54.862Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"GHSA-wx9m-wx4f-4cmg","latest_published":"2026-05-18T17:55:27Z","advisories":[{"id":"GHSA-wx9m-wx4f-4cmg","aliases":[],"summary":"Malicious dropper in mistralai 2.4.6 PyPI package","published":"2026-05-18T17:55:27Z","modified":"2026-05-18T18:06:24.120188Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["2.4.6"],"first_patched_version":null,"reference_urls":["https://github.com/mistralai/client-python/security/advisories/GHSA-wx9m-wx4f-4cmg","https://github.com/mistralai/client-python/issues/523","https://github.com/mistralai/client-python","https://safedep.io/mass-npm-supply-chain-attack-tanstack-mistral","https://socket.dev/blog/tanstack-npm-packages-compromised-mini-shai-hulud-supply-chain-attack","https://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystem"]},{"id":"MAL-2026-3608","aliases":[],"summary":"Malicious code in mistralai (PyPI)","published":"2026-05-12T05:49:00Z","modified":"2026-05-12T07:07:23.837500Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["2.4.6"],"first_patched_version":null,"reference_urls":["https://www.aikido.dev/blog/mini-shai-hulud-is-back-tanstack-compromised","https://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystem","https://socket.dev/blog/tanstack-npm-packages-compromised-mini-shai-hulud-supply-chain-attack","https://tanstack.com/blog/npm-supply-chain-compromise-postmortem","https://snyk.io/blog/tanstack-npm-packages-compromised/"]}]},{"package":"cohere","ecosystem":"PyPI","category":"llm-sdk","description":"Cohere Python SDK","homepage":null,"fetched_at":"2026-07-03T05:45:54.764Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"groq","ecosystem":"PyPI","category":"llm-sdk","description":"Groq Cloud Python SDK","homepage":null,"fetched_at":"2026-07-03T05:45:54.791Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"together","ecosystem":"PyPI","category":"llm-sdk","description":"Together AI Python SDK","homepage":null,"fetched_at":"2026-07-03T05:45:54.959Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"replicate","ecosystem":"PyPI","category":"llm-sdk","description":"Replicate API client","homepage":null,"fetched_at":"2026-07-03T05:45:54.960Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"langchain","ecosystem":"PyPI","category":"agent-framework","description":"LangChain framework","homepage":"https://langchain.com","fetched_at":"2026-07-03T05:45:56.379Z","advisories_count":39,"open_count":39,"withdrawn_count":0,"latest_advisory_id":"PYSEC-2026-372","latest_published":"2026-06-29T11:50:43.657008Z","advisories":[{"id":"PYSEC-2026-372","aliases":["CVE-2023-32785","GHSA-8h5w-f6q9-wg35"],"summary":"Langchain SQL Injection vulnerability","published":"2026-06-29T11:50:43.657008Z","modified":"2026-07-01T20:22:55.646349Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-32785","https://github.com/langchain-ai/langchain/issues/5923#issuecomment-1696053841","https://gist.github.com/rharang/9c58d39db8c01db5b7c888e467c0533f","https://github.com/langchain-ai/langchain","https://pypi.org/project/langchain","https://github.com/advisories/GHSA-8h5w-f6q9-wg35"]},{"id":"GHSA-gr75-jv2w-4656","aliases":[],"summary":"LangChain: Path traversal and sandbox escape in LangChain file-search middleware and loaders","published":"2026-06-16T15:03:14Z","modified":"2026-06-26T17:59:18.379721145Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.329","0.0.33","0.0.330","0.0.331","0.0.331rc0","0.0.331rc1","0.0.331rc2","0.0.331rc3","0.0.332","0.0.333","0.0.334","0.0.335","0.0.336","0.0.337","0.0.338","0.0.339","0.0.339rc0","0.0.339rc1","0.0.339rc2","0.0.339rc3","0.0.34","0.0.340","0.0.341","0.0.342","0.0.343","0.0.344","0.0.345","0.0.346","0.0.347","0.0.348","0.0.349","0.0.349rc1","0.0.349rc2","0.0.35","0.0.350","0.0.351","0.0.352","0.0.353","0.0.354","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14","0.1.15","0.1.16","0.1.17","0.1.17rc1","0.1.19","0.1.2","0.1.20","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.0rc2","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.15","0.2.16","0.2.17","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.0.dev1","0.3.0.dev2","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.18rc1","0.3.18rc2","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.4","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.4.0.dev0","1.0.0","1.0.0a1","1.0.0a10","1.0.0a11","1.0.0a12","1.0.0a13","1.0.0a14","1.0.0a15","1.0.0a2","1.0.0a3","1.0.0a4","1.0.0a5","1.0.0a6","1.0.0a7","1.0.0a8","1.0.0a9","1.0.0rc1","1.0.0rc2","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.0.8","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0","1.2.1","1.2.10","1.2.11","1.2.12","1.2.13","1.2.14","1.2.15","1.2.16","1.2.17","1.2.18","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.2.7","1.2.8","1.2.9","1.3.0","1.3.0a1","1.3.0a2","1.3.1","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.3.7","1.3.8","0-1.3.9"],"first_patched_version":"1.3.9","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-gr75-jv2w-4656","https://github.com/langchain-ai/langchain"]},{"id":"GHSA-3644-q5cj-c5c7","aliases":["CVE-2026-45134"],"summary":"LangSmith SDK: Public prompt pull deserializes untrusted manifests without trust boundary warning","published":"2026-05-13T15:29:30Z","modified":"2026-06-09T00:00:22.052113663Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.329","0.0.33","0.0.330","0.0.331","0.0.331rc0","0.0.331rc1","0.0.331rc2","0.0.331rc3","0.0.332","0.0.333","0.0.334","0.0.335","0.0.336","0.0.337","0.0.338","0.0.339","0.0.339rc0","0.0.339rc1","0.0.339rc2","0.0.339rc3","0.0.34","0.0.340","0.0.341","0.0.342","0.0.343","0.0.344","0.0.345","0.0.346","0.0.347","0.0.348","0.0.349","0.0.349rc1","0.0.349rc2","0.0.35","0.0.350","0.0.351","0.0.352","0.0.353","0.0.354","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14","0.1.15","0.1.16","0.1.17","0.1.17rc1","0.1.19","0.1.2","0.1.20","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.0rc2","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.15","0.2.16","0.2.17","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.0.dev1","0.3.0.dev2","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.18rc1","0.3.18rc2","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.4","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0-0.3.30"],"first_patched_version":"0.8.0","reference_urls":["https://github.com/langchain-ai/langsmith-sdk/security/advisories/GHSA-3644-q5cj-c5c7","https://nvd.nist.gov/vuln/detail/CVE-2026-45134","https://github.com/langchain-ai/langsmith-sdk"]},{"id":"PYSEC-2024-115","aliases":["CVE-2024-8309","GHSA-45pg-36p6-83v9"],"summary":"","published":"2024-11-05T16:04:14Z","modified":"2026-06-10T17:01:58.487495126Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.329","0.0.33","0.0.330","0.0.331","0.0.331rc0","0.0.331rc1","0.0.331rc2","0.0.331rc3","0.0.332","0.0.333","0.0.334","0.0.335","0.0.336","0.0.337","0.0.338","0.0.339","0.0.339rc0","0.0.339rc1","0.0.339rc2","0.0.339rc3","0.0.34","0.0.340","0.0.341","0.0.342","0.0.343","0.0.344","0.0.345","0.0.346","0.0.347","0.0.348","0.0.349","0.0.349rc1","0.0.349rc2","0.0.35","0.0.350","0.0.351","0.0.352","0.0.353","0.0.354","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14","0.1.15","0.1.16","0.1.17","0.1.17rc1","0.1.19","0.1.2","0.1.20","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0rc1","0.2.0rc2","langchain-openai==0.1.25","langchain-core==0.2.40","langchain-community==0.2.17","langchain-openai==0.1.24","langchain-groq==0.1.10","langchain-core==0.2.39","langchain-mongodb==0.1.9","langchain-experimental==0.0.65","langchain-community==0.2.16","langchain==0.2.16","langchain-text-splitters==0.2.4","langchain-mistralai==0.1.13","langchain-core==0.2.38","langchain-ollama==0.1.3","langchain-community==0.2.15","langchain-core==0.2.37","langchain-prompty==0.0.3","langchain-core==0.2.36","langchain-ollama==0.1.2","langchain-community==0.2.14","langchain-community==0.2.13","langchain-openai==0.1.23","langchain==0.2.15","langchain-core==0.2.35","langchain-cli==0.0.30","langchain-box==0.1.0","langchain-unstructured==0.1.2","langchain-core==0.2.34","langchain-openai==0.1.22","langchain-core==0.2.33","langchain==0.2.14","langchain-core==0.2.32","langchain-core==0.2.31","langchain-anthropic==0.1.23","langchain-community==0.2.12","langchain==0.2.13","langchain-core==0.2.30","langchain-openai==0.1.21","langchain-mongodb==0.1.8","langchain-cli==0.0.29","langchain-openai==0.1.21rc2","langchain-core==0.2.29","langchain-milvus==0.1.4","langchain-openai==0.1.21rc1","langchain-core==0.2.29rc1","langchain-core==0.2.28","langchain-community==0.2.11","langchain-experimental==0.0.64","langchain==0.2.12","langchain-core==0.2.27","langchain-cli==0.0.28","langchain-ollama==0.1.1","langchain-together==0.1.5","langchain-openai==0.1.20","langchain-mistralai==0.1.12","langchain-groq==0.1.9","langchain-fireworks==0.1.7","langchain-anthropic==0.1.22","langchain-core==0.2.26","langchain-cli==0.0.27","langchain-core==0.2.25","langchain-groq==0.1.8","langchain-fireworks==0.1.6","langchain-unstructured==0.1.1","langchain-robocorp==0.0.10","langchain-openai==0.1.19","langchain-mistralai==0.1.11","langchain-anthropic==0.1.21","langchain-core==0.2.24","langchain-unstructured==0.1.0","langchain-cli==0.0.26","langchain-milvus==0.1.3","langchain-qdrant==0.1.3","langchain-pinecone==0.1.3","langchain-couchbase==0.1.1","langchain-experimental==0.0.63","langchain-community==0.2.10","langchain==0.2.11","langchain-core==0.2.23","langchain-ollama==0.1.0","langchain-community==0.2.9","langchain==0.2.10","langchain-mongodb==0.1.7","langchain-core==0.2.22","langchain-core==0.2.21","langchain-couchbase==0.1.0","langchain-milvus==0.1.2","langchain-openai==0.1.17","langchain-pinecone==0.1.2","langchain==0.2.9","langchain-core==0.2.20","langchain==0.2.8","langchain-core==0.2.19","langchain-core==0.2.18","langchain-qdrant==0.1.2","langchain-together==0.1.4","langchain-fireworks==0.1.5","langchain-anthropic==0.1.20","langchain-openai==0.1.16","langchain-mistralai==0.1.10","langchain-core==0.2.17","langchain-core==0.2.16","langchain-core==0.2.15","langchain-openai==0.1.15","langchain-core==0.2.13","langchain-community==0.2.7","langchain==0.2.7","langchain-core==0.2.12","langchain-ibm==0.1.9","langchain-openai==0.1.14","langchain-anthropic==0.1.19","langchain-core==0.2.11","langchain-ai21==0.1.7","langchain-anthropic==0.1.18","langchain-ibm==0.1.8","langchain-mistralai==0.1.9","langchain-groq==0.1.6","langchain-fireworks==0.1.4","langchain-openai==0.1.13","langchain-anthropic==0.1.17","langchain-openai==0.1.12","langchain-chroma==0.1.2","langchain-openai==0.1.11","langchain-anthropic==0.1.16","langchain-text-splitters==0.2.2","langchain-experimental==0.0.62","langchain-community==0.2.6","langchain==0.2.6","langchain-core==0.2.10","langchain-openai==0.1.10","langchain-openai==0.1.9","langchain-core==0.2.9","langchain-core==0.2.8","langchain-experimental==0.0.61","langchain-community==0.2.5","langchain==0.2.5","langchain-core==0.2.7","langchain-qdrant==0.1.1","langchain-cli==0.0.25","langchain==0.2.4","langchain-core==0.2.6","langchain-couchbase==0.0.1","langchain-community==0.2.4","langchain==0.2.3","langchain-core==0.2.5","langchain-together==0.1.3","langchain-community==0.2.3","langchain-nomic==0.1.2","langchain-huggingface==0.0.3","langchain-ai21==0.1.6","langchain-robocorp==0.0.9.post1","langchain-mongodb==0.1.6","langchain-groq==0.1.5","langchain-milvus==0.1.1","langchain-experimental==0.0.60","langchain-community==0.2.2","langchain==0.2.2","langchain-mistralai==0.1.8","langchain-huggingface==0.0.2","langchain-text-splitters==0.2.1","langchain-core==0.2.4","langchain-anthropic==0.1.15","langchain-core==0.2.3","langchain-robocorp==0.0.9","langchain-cli==0.0.24","langchain-openai==0.1.8","langchain-core==0.2.2","langchain-milvus==0.1.0","langchain-anthropic==0.1.14rc2","langchain-cli==0.0.23","langchain-openai==0.1.8rc1","langchain-anthropic==0.1.14rc1","langchain-core==0.2.2rc1","langchain-community==0.2.1","langchain==0.2.1","langchain-robocorp==0.0.8","langchain-core==0.2.1","langchain-nomic==0.1.1","langchain-experimental==0.0.59","langchain-community==0.2.0","langchain==0.2.0","langchain-text-splitters==0.2.0","langchain-core==0.2.0","langchain-anthropic==0.1.13","langchain-upstage==0.1.5","langchain-text-splitters==0.0.2","langchain-fireworks==0.1.3","langchain-pinecone==0.1.1","langchain-exa==0.1.0","langchain-airbyte==0.1.1","langchain-ibm==0.1.7","langchain-voyageai==0.1.1","langchain-together==0.1.2","langchain-robocorp==0.0.7","langchain-qdrant==0.1.0","langchain-prompty==0.0.2","langchain-nomic==0.1.0","langchain-mongodb==0.1.5","langchain-mistralai==0.1.7","langchain-groq==0.1.4","langchain-azure-dynamic-sessions==0.1.0","langchain-anthropic==0.1.12","langchain-ai21==0.1.5","langchain-chroma==0.1.1","langchain-openai==0.1.7","langchain-mongodb==0.1.4","langchain-core==0.2.0rc1","langchain-qdrant==0.0.1","langchain-huggingface==0.0.1","langchain-prompty==0.0.1","langchain-community==0.2.0rc1","langchain-cli==0.0.22","langchain-azure-dynamic-sessions==0.1.0rc0","langchain==0.2.0rc2","langchain-upstage==0.1.4","langchain-ibm==0.1.6","langchain-robocorp==0.0.6","langchain-experimental==0.0.58","langchain-together==0.1.1","langchain-core==0.1.52","langchain-community==0.0.37","langchain-core==0.1.51","langchain-ibm==0.1.5","langchain-openai==0.1.6","langchain-core==0.1.50","langchain-mistralai==0.1.6","langchain-openai==0.1.5","langchain-ai21==0.1.4","langchain==0.1.17","langchain-community==0.0.36","langchain-core==0.1.48","langchain-community==0.0.35","langchain-core==0.1.47","v0.1.16","v0.1.15","v0.1.14","v0.1.13","v0.1.12","v0.1.11","v0.1.10","v0.1.9","v0.1.8","v0.1.7","v0.1.6","v0.1.5","v0.1.4","v0.1.3","v0.1.2","v0.1.1","v0.1.0","v0.0.354","v0.0.353","v0.0.352","v0.0.351","v0.0.350","v0.0.349","v0.0.349-rc.2","v0.0.349-rc.1","v0.0.347","v0.0.348","v0.0.346","v0.0.345","v0.0.344","v0.0.343","v0.0.342","v0.0.341","v0.0.339rc3","v0.0.339rc2","v0.0.340","v0.0.339","v0.0.339rc1","v0.0.339rc0","v0.0.338","v0.0.337","v0.0.336","v0.0.335","v0.0.334","v0.0.333","v0.0.332","v0.0.331rc3","v0.0.331rc2","v0.0.331rc1","v0.0.331rc0","v0.0.331","v0.0.330","v0.0.329","v0.0.327","v0.0.326","v0.0.325","v0.0.324","v0.0.323","v0.0.322","v0.0.321","v0.0.320","v0.0.319","v0.0.318","v0.0.317","v0.0.316","v0.0.315","v0.0.314","v0.0.313","v0.0.312","v0.0.311","v0.0.310","v0.0.309","v0.0.308","v0.0.307","v0.0.306","v0.0.305","v0.0.304","v0.0.303","v0.0.302","v0.0.301","v0.0.298","v0.0.300","v0.0.299","v0.0.297","v0.0.296","v0.0.295","v0.0.294","v0.0.293","v0.0.292","v0.0.291","v0.0.290","v0.0.289","v0.0.288","v0.0.287","v0.0.286","v0.0.285","v0.0.284","v0.0.283","v0.0.281","v0.0.279","v0.0.278","v0.0.277","v0.0.276","v0.0.275","v0.0.274","v0.0.273","v0.0.272","v0.0.271","v0.0.270","v0.0.269","v0.0.268","v0.0.267","v0.0.266","v0.0.265","v0.0.264","v0.0.263","v0.0.262","v0.0.261","v0.0.260","v0.0.259","v0.0.258","v0.0.257","v0.0.256","v0.0.255","v0.0.254","v0.0.253","v0.0.252","v0.0.251","v0.0.250","v0.0.249","v0.0.248","v0.0.247","v0.0.245","v0.0.5","v0.0.244","v0.0.4","v0.0.243","v0.0.242","v0.0.2","v0.0.240","v0.0.1","v0.0.240rc4","v0.0.1rc4","v0.0.240rc1","v0.0.240rc0","v0.0.1rc3","v0.0.1rc2","v0.0.1rc1","v0.0.1rc0","v0.0.239","v0.0.238","v0.0.237","v0.0.236","v0.0.235","v0.0.234","v0.0.233","v0.0.232","v0.0.231","v0.0.230","v0.0.229","v0.0.228","v0.0.227","v0.0.226","v0.0.225","v0.0.224","v0.0.223","v0.0.222","v0.0.221","v0.0.220","v0.0.219","v0.0.218","v0.0.217","v0.0.216","v0.0.215","v0.0.214","v0.0.213","v0.0.212","v0.0.211","v0.0.210","v0.0.209","v0.0.208","v0.0.207","v0.0.206","v0.0.205","v0.0.204","v0.0.202","v0.0.201","v0.0.200","v0.0.199","v0.0.198","v0.0.197","v0.0.196","v0.0.195","v0.0.194","v0.0.193","v0.0.192","v0.0.191","v0.0.190","v0.0.189","v0.0.188","v0.0.187","v0.0.186","v0.0.185","v0.0.184","v0.0.183","v0.0.182","v0.0.181","v0.0.180","v0.0.179","v0.0.178","v0.0.177","v0.0.175","v0.0.174","v0.0.173","v0.0.172","v0.0.171","v0.0.170","v0.0.169","v0.0.168","v0.0.167","v0.0.166","v0.0.165","v0.0.164","v0.0.163","v0.0.161","v0.0.162","v0.0.160","v0.0.159","v0.0.158","v0.0.157","v0.0.156","v0.0.155","v0.0.154","v0.0.153","v0.0.152","v0.0.151","v0.0.150","v0.0.149","v0.0.147","v0.0.146","v0.0.145","v0.0.144","v0.0.143","v0.0.142","v0.0.141","v0.0.140","v0.0.139","v0.0.138","v0.0.137","v0.0.136","v0.0.135","v0.0.134","v0.0.133","v0.0.132","v0.0.131","v0.0.130","v0.0.129","v0.0.128","v0.0.127","v0.0.126","v0.0.125","v0.0.124","v0.0.123","v0.0.122","v0.0.121","v0.0.120","v0.0.119","v0.0.118","v0.0.117","v0.0.116","v0.0.115","v0.0.114","v0.0.113","v0.0.112","v0.0.111","v0.0.110","v0.0.109","v0.0.108","v0.0.107","v0.0.106","v0.0.105","v0.0.104","v0.0.103","v0.0.102","v0.0.101","v0.0.100","v0.0.99","v0.0.98","v0.0.97","v0.0.96","v0.0.95","v0.0.94","v0.0.93","v0.0.92","v0.0.91","v0.0.90","v0.0.89","v0.0.88","v0.0.87","v0.0.86","v0.0.85","v0.0.84","v0.0.83","v0.0.82","v0.0.81","v0.0.80","v0.0.79","v0.0.78","v0.0.77","v0.0.76","v0.0.75","v0.0.74","v0.0.73","v0.0.72","v0.0.71","v0.0.70","v0.0.69","v0.0.68","v0.0.67","v0.0.66","v0.0.65","v0.0.64","0-c2a3021bb0c5f54649d380b42a0684ca5778c255","0-0.2.0"],"first_patched_version":"c2a3021bb0c5f54649d380b42a0684ca5778c255","reference_urls":["https://huntr.com/bounties/8f4ad910-7fdc-4089-8f0a-b5df5f32e7c5","https://huntr.com/bounties/8f4ad910-7fdc-4089-8f0a-b5df5f32e7c5","https://github.com/langchain-ai/langchain/commit/c2a3021bb0c5f54649d380b42a0684ca5778c255","https://github.com/advisories/GHSA-45pg-36p6-83v9"]},{"id":"GHSA-45pg-36p6-83v9","aliases":["CVE-2024-8309","PYSEC-2024-115"],"summary":"Langchain SQL Injection vulnerability","published":"2024-10-29T15:32:05Z","modified":"2024-11-12T20:01:32.450977Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.329","0.0.33","0.0.330","0.0.331","0.0.331rc0","0.0.331rc1","0.0.331rc2","0.0.331rc3","0.0.332","0.0.333","0.0.334","0.0.335","0.0.336","0.0.337","0.0.338","0.0.339","0.0.339rc0","0.0.339rc1","0.0.339rc2","0.0.339rc3","0.0.34","0.0.340","0.0.341","0.0.342","0.0.343","0.0.344","0.0.345","0.0.346","0.0.347","0.0.348","0.0.349","0.0.349rc1","0.0.349rc2","0.0.35","0.0.350","0.0.351","0.0.352","0.0.353","0.0.354","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14","0.1.15","0.1.16","0.1.17","0.1.17rc1","0.1.19","0.1.2","0.1.20","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0rc1","0.2.0rc2","0-0.2.0"],"first_patched_version":"0.2.19","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-8309","https://github.com/langchain-ai/langchain/commit/64c317eba05fbac0c6a6fc5aa192bc0d7130972e","https://github.com/langchain-ai/langchain/commit/c2a3021bb0c5f54649d380b42a0684ca5778c255","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2024-115.yaml","https://huntr.com/bounties/8f4ad910-7fdc-4089-8f0a-b5df5f32e7c5"]},{"id":"GHSA-3hjh-jh2h-vrg6","aliases":["CVE-2024-2965","PYSEC-2024-118"],"summary":"Denial of service in langchain-community","published":"2024-06-06T21:30:36Z","modified":"2024-11-04T15:32:21.402118Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.329","0.0.33","0.0.330","0.0.331","0.0.331rc0","0.0.331rc1","0.0.331rc2","0.0.331rc3","0.0.332","0.0.333","0.0.334","0.0.335","0.0.336","0.0.337","0.0.338","0.0.339","0.0.339rc0","0.0.339rc1","0.0.339rc2","0.0.339rc3","0.0.34","0.0.340","0.0.341","0.0.342","0.0.343","0.0.344","0.0.345","0.0.346","0.0.347","0.0.348","0.0.349","0.0.349rc1","0.0.349rc2","0.0.35","0.0.350","0.0.351","0.0.352","0.0.353","0.0.354","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14","0.1.15","0.1.16","0.1.17","0.1.17rc1","0.1.19","0.1.2","0.1.20","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.0rc2","0.2.1","0.2.2","0.2.3","0.2.4","0-0.2.5"],"first_patched_version":"0.2.5","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-2965","https://github.com/langchain-ai/langchain/pull/22903","https://github.com/langchain-ai/langchain/commit/73c42306745b0831aa6fe7fe4eeb70d2c2d87a82","https://github.com/langchain-ai/langchain/commit/9a877c7adbd06f90a2518152f65b562bd90487cc","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2024-118.yaml","https://huntr.com/bounties/90b0776d-9fa6-4841-aac4-09fde5918cae"]},{"id":"PYSEC-2024-118","aliases":["CVE-2024-2965","GHSA-3hjh-jh2h-vrg6"],"summary":"","published":"2024-06-06T19:15:00Z","modified":"2026-06-10T17:01:58.438884207Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.329","0.0.33","0.0.330","0.0.331","0.0.331rc0","0.0.331rc1","0.0.331rc2","0.0.331rc3","0.0.332","0.0.333","0.0.334","0.0.335","0.0.336","0.0.337","0.0.338","0.0.339","0.0.339rc0","0.0.339rc1","0.0.339rc2","0.0.339rc3","0.0.34","0.0.340","0.0.341","0.0.342","0.0.343","0.0.344","0.0.345","0.0.346","0.0.347","0.0.348","0.0.349","0.0.349rc1","0.0.349rc2","0.0.35","0.0.350","0.0.351","0.0.352","0.0.353","0.0.354","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14","0.1.15","0.1.16","0.1.17","0.1.17rc1","0.1.19","0.1.2","0.1.20","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.0rc2","0.2.1","0.2.2","0.2.3","0.2.4","v0.1.16","v0.1.15","v0.1.14","v0.1.13","v0.1.12","v0.1.11","v0.1.10","v0.1.9","v0.1.8","v0.1.7","v0.1.6","v0.1.5","v0.1.4","v0.1.3","v0.1.2","v0.1.1","v0.1.0","v0.0.354","v0.0.353","v0.0.352","v0.0.351","v0.0.350","v0.0.349","v0.0.349-rc.2","v0.0.349-rc.1","v0.0.347","v0.0.348","v0.0.346","v0.0.345","v0.0.344","v0.0.343","v0.0.342","v0.0.341","v0.0.339rc3","v0.0.339rc2","v0.0.340","v0.0.339","v0.0.339rc1","v0.0.339rc0","v0.0.338","v0.0.337","v0.0.336","v0.0.335","v0.0.334","v0.0.333","v0.0.332","v0.0.331rc3","v0.0.331rc2","v0.0.331rc1","v0.0.331rc0","v0.0.331","v0.0.330","v0.0.329","v0.0.327","v0.0.326","v0.0.325","v0.0.324","v0.0.323","v0.0.322","v0.0.321","v0.0.320","v0.0.319","v0.0.318","v0.0.317","v0.0.316","v0.0.315","v0.0.314","v0.0.313","v0.0.312","v0.0.311","v0.0.310","v0.0.309","v0.0.308","v0.0.307","v0.0.306","v0.0.305","v0.0.304","v0.0.303","v0.0.302","v0.0.301","v0.0.298","v0.0.300","v0.0.299","v0.0.297","v0.0.296","v0.0.295","v0.0.294","v0.0.293","v0.0.292","v0.0.291","v0.0.290","v0.0.289","v0.0.288","v0.0.287","v0.0.286","v0.0.285","v0.0.284","v0.0.283","v0.0.281","v0.0.279","v0.0.278","v0.0.277","v0.0.276","v0.0.275","v0.0.274","v0.0.273","v0.0.272","v0.0.271","v0.0.270","v0.0.269","v0.0.268","v0.0.267","v0.0.266","v0.0.265","v0.0.264","v0.0.263","v0.0.262","v0.0.261","v0.0.260","v0.0.259","v0.0.258","v0.0.257","v0.0.256","v0.0.255","v0.0.254","v0.0.253","v0.0.252","v0.0.251","v0.0.250","v0.0.249","v0.0.248","v0.0.247","v0.0.245","v0.0.5","v0.0.244","v0.0.4","v0.0.243","v0.0.242","v0.0.2","v0.0.240","v0.0.1","v0.0.240rc4","v0.0.1rc4","v0.0.240rc1","v0.0.240rc0","v0.0.1rc3","v0.0.1rc2","v0.0.1rc1","v0.0.1rc0","v0.0.239","v0.0.238","v0.0.237","v0.0.236","v0.0.235","v0.0.234","v0.0.233","v0.0.232","v0.0.231","v0.0.230","v0.0.229","v0.0.228","v0.0.227","v0.0.226","v0.0.225","v0.0.224","v0.0.223","v0.0.222","v0.0.221","v0.0.220","v0.0.219","v0.0.218","v0.0.217","v0.0.216","v0.0.215","v0.0.214","v0.0.213","v0.0.212","v0.0.211","v0.0.210","v0.0.209","v0.0.208","v0.0.207","v0.0.206","v0.0.205","v0.0.204","v0.0.202","v0.0.201","v0.0.200","v0.0.199","v0.0.198","v0.0.197","v0.0.196","v0.0.195","v0.0.194","v0.0.193","v0.0.192","v0.0.191","v0.0.190","v0.0.189","v0.0.188","v0.0.187","v0.0.186","v0.0.185","v0.0.184","v0.0.183","v0.0.182","v0.0.181","v0.0.180","v0.0.179","v0.0.178","v0.0.177","v0.0.175","v0.0.174","v0.0.173","v0.0.172","v0.0.171","v0.0.170","v0.0.169","v0.0.168","v0.0.167","v0.0.166","v0.0.165","v0.0.164","v0.0.163","v0.0.161","v0.0.162","v0.0.160","v0.0.159","v0.0.158","v0.0.157","v0.0.156","v0.0.155","v0.0.154","v0.0.153","v0.0.152","v0.0.151","v0.0.150","v0.0.149","v0.0.147","v0.0.146","v0.0.145","v0.0.144","v0.0.143","v0.0.142","v0.0.141","v0.0.140","v0.0.139","v0.0.138","v0.0.137","v0.0.136","v0.0.135","v0.0.134","v0.0.133","v0.0.132","v0.0.131","v0.0.130","v0.0.129","v0.0.128","v0.0.127","v0.0.126","v0.0.125","v0.0.124","v0.0.123","v0.0.122","v0.0.121","v0.0.120","v0.0.119","v0.0.118","v0.0.117","v0.0.116","v0.0.115","v0.0.114","v0.0.113","v0.0.112","v0.0.111","v0.0.110","v0.0.109","v0.0.108","v0.0.107","v0.0.106","v0.0.105","v0.0.104","v0.0.103","v0.0.102","v0.0.101","v0.0.100","v0.0.99","v0.0.98","v0.0.97","v0.0.96","v0.0.95","v0.0.94","v0.0.93","v0.0.92","v0.0.91","v0.0.90","v0.0.89","v0.0.88","v0.0.87","v0.0.86","v0.0.85","v0.0.84","v0.0.83","v0.0.82","v0.0.81","v0.0.80","v0.0.79","v0.0.78","v0.0.77","v0.0.76","v0.0.75","v0.0.74","v0.0.73","v0.0.72","v0.0.71","v0.0.70","v0.0.69","v0.0.68","v0.0.67","v0.0.66","v0.0.65","v0.0.64","0-73c42306745b0831aa6fe7fe4eeb70d2c2d87a82","0-0.2.5"],"first_patched_version":"73c42306745b0831aa6fe7fe4eeb70d2c2d87a82","reference_urls":["https://huntr.com/bounties/90b0776d-9fa6-4841-aac4-09fde5918cae","https://huntr.com/bounties/90b0776d-9fa6-4841-aac4-09fde5918cae","https://github.com/langchain-ai/langchain/commit/73c42306745b0831aa6fe7fe4eeb70d2c2d87a82","https://github.com/advisories/GHSA-3hjh-jh2h-vrg6"]},{"id":"GHSA-rgp8-pm28-3759","aliases":["CVE-2024-3571"],"summary":"langchain vulnerable to path traversal","published":"2024-04-16T00:30:34Z","modified":"2024-04-16T18:42:03.514215Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.329","0.0.33","0.0.330","0.0.331","0.0.331rc0","0.0.331rc1","0.0.331rc2","0.0.331rc3","0.0.332","0.0.333","0.0.334","0.0.335","0.0.336","0.0.337","0.0.338","0.0.339","0.0.339rc0","0.0.339rc1","0.0.339rc2","0.0.339rc3","0.0.34","0.0.340","0.0.341","0.0.342","0.0.343","0.0.344","0.0.345","0.0.346","0.0.347","0.0.348","0.0.349","0.0.349rc1","0.0.349rc2","0.0.35","0.0.350","0.0.351","0.0.352","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.353"],"first_patched_version":"0.0.353","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-3571","https://github.com/langchain-ai/langchain/commit/aad3d8bd47d7f5598156ff2bdcc8f736f24a7412","https://github.com/langchain-ai/langchain","https://huntr.com/bounties/2df3acdc-ee4f-4257-bbf8-a7de3870a9d8"]},{"id":"GHSA-h59x-p739-982c","aliases":["CVE-2024-28088","PYSEC-2024-43","PYSEC-2024-45"],"summary":"LangChain directory traversal vulnerability","published":"2024-03-04T00:30:53Z","modified":"2024-12-03T05:59:19.205896Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.329","0.0.33","0.0.330","0.0.331","0.0.331rc0","0.0.331rc1","0.0.331rc2","0.0.331rc3","0.0.332","0.0.333","0.0.334","0.0.335","0.0.336","0.0.337","0.0.338","0.0.339rc0","0.0.339rc1","0.0.339rc2","0.0.339rc3","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.339"],"first_patched_version":"0.0.339","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-28088","https://github.com/langchain-ai/langchain/pull/18600","https://github.com/langchain-ai/langchain/commit/e1924b3e93d513ca950c72f8e80e1c133749fba5","https://github.com/PinkDraconian/PoC-Langchain-RCE/blob/main/README.md","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/blob/f96dd57501131840b713ed7c2e86cbf1ddc2761f/libs/core/langchain_core/utils/loading.py","https://github.com/pypa/advisory-database/tree/main/vulns/langchain-core/PYSEC-2024-45.yaml","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2024-43.yaml"]},{"id":"PYSEC-2024-43","aliases":["CVE-2024-28088","GHSA-h59x-p739-982c","PYSEC-2024-45"],"summary":"","published":"2024-03-04T00:15:00Z","modified":"2024-03-13T23:41:33.247986Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.329","0.0.33","0.0.330","0.0.331","0.0.331rc0","0.0.331rc1","0.0.331rc2","0.0.331rc3","0.0.332","0.0.333","0.0.334","0.0.335","0.0.336","0.0.337","0.0.338","0.0.339","0.0.339rc0","0.0.339rc1","0.0.339rc2","0.0.339rc3","0.0.34","0.0.340","0.0.341","0.0.342","0.0.343","0.0.344","0.0.345","0.0.346","0.0.347","0.0.348","0.0.349","0.0.349rc1","0.0.349rc2","0.0.35","0.0.350","0.0.351","0.0.352","0.0.353","0.0.354","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0.1.0","0.1.1","0.1.10","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0-0.1.11"],"first_patched_version":"0.1.11","reference_urls":["https://github.com/PinkDraconian/PoC-Langchain-RCE/blob/main/README.md","https://github.com/langchain-ai/langchain/blob/f96dd57501131840b713ed7c2e86cbf1ddc2761f/libs/core/langchain_core/utils/loading.py"]},{"id":"GHSA-h9j7-5xvc-qhg5","aliases":["CVE-2024-0243","PYSEC-2024-235"],"summary":"langchain Server-Side Request Forgery vulnerability","published":"2024-02-26T18:30:29Z","modified":"2025-02-26T22:32:54.404253Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.329","0.0.33","0.0.330","0.0.331","0.0.331rc0","0.0.331rc1","0.0.331rc2","0.0.331rc3","0.0.332","0.0.333","0.0.334","0.0.335","0.0.336","0.0.337","0.0.338","0.0.339","0.0.339rc0","0.0.339rc1","0.0.339rc2","0.0.339rc3","0.0.34","0.0.340","0.0.341","0.0.342","0.0.343","0.0.344","0.0.345","0.0.346","0.0.347","0.0.348","0.0.349","0.0.349rc1","0.0.349rc2","0.0.35","0.0.350","0.0.351","0.0.352","0.0.353","0.0.354","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.1.0"],"first_patched_version":"0.1.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-0243","https://github.com/langchain-ai/langchain/pull/15559","https://github.com/langchain-ai/langchain/commit/bf0b3cc0b5ade1fb95a5b1b6fa260e99064c2e22","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/blob/bf0b3cc0b5ade1fb95a5b1b6fa260e99064c2e22/libs/community/langchain_community/document_loaders/recursive_url_loader.py#L51-L51","https://github.com/pypa/advisory-database/tree/main/vulns/langchain-exa/PYSEC-2024-235.yaml","https://huntr.com/bounties/370904e7-10ac-40a4-a8d4-e2d16e1ca861"]},{"id":"GHSA-6h8p-4hx9-w66c","aliases":["CVE-2023-32786"],"summary":"Langchain Server-Side Request Forgery vulnerability","published":"2023-10-21T00:30:47Z","modified":"2024-02-16T08:16:38.860634Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.325","0.0.326","0.0.327","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.329"],"first_patched_version":"0.0.329","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-32786","https://github.com/langchain-ai/langchain/pull/12747","https://gist.github.com/rharang/d265f46fc3161b31ac2e81db44d662e1","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/v0.0.329"]},{"id":"GHSA-8h5w-f6q9-wg35","aliases":["CVE-2023-32785","PYSEC-2026-372"],"summary":"Langchain SQL Injection vulnerability","published":"2023-10-21T00:30:47Z","modified":"2026-06-29T12:26:09.494263818Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-32785","https://github.com/langchain-ai/langchain/issues/5923#issuecomment-1696053841","https://gist.github.com/rharang/9c58d39db8c01db5b7c888e467c0533f","https://github.com/langchain-ai/langchain"]},{"id":"GHSA-655w-fm8m-m478","aliases":["CVE-2023-46229","PYSEC-2023-205"],"summary":"LangChain Server Side Request Forgery vulnerability","published":"2023-10-19T06:30:23Z","modified":"2024-09-30T16:26:08.583699Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.317"],"first_patched_version":"0.0.317","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-46229","https://github.com/langchain-ai/langchain/pull/11925","https://github.com/langchain-ai/langchain/commit/9ecb7240a480720ec9d739b3877a52f76098a2b8","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-205.yaml"]},{"id":"PYSEC-2023-205","aliases":["CVE-2023-46229","GHSA-655w-fm8m-m478"],"summary":"","published":"2023-10-19T05:15:00Z","modified":"2026-06-10T17:01:57.192140358Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","v0.0.316","v0.0.315","v0.0.314","v0.0.313","v0.0.312","v0.0.311","v0.0.310","v0.0.309","v0.0.308","v0.0.307","v0.0.306","v0.0.305","v0.0.304","v0.0.303","v0.0.302","v0.0.301","v0.0.298","v0.0.300","v0.0.299","v0.0.297","v0.0.296","v0.0.295","v0.0.294","v0.0.293","v0.0.292","v0.0.291","v0.0.290","v0.0.289","v0.0.288","v0.0.287","v0.0.286","v0.0.285","v0.0.284","v0.0.283","v0.0.281","v0.0.279","v0.0.278","v0.0.277","v0.0.276","v0.0.275","v0.0.274","v0.0.273","v0.0.272","v0.0.271","v0.0.270","v0.0.269","v0.0.268","v0.0.267","v0.0.266","v0.0.265","v0.0.264","v0.0.263","v0.0.262","v0.0.261","v0.0.260","v0.0.259","v0.0.258","v0.0.257","v0.0.256","v0.0.255","v0.0.254","v0.0.253","v0.0.252","v0.0.251","v0.0.250","v0.0.249","v0.0.248","v0.0.247","v0.0.245","v0.0.5","v0.0.244","v0.0.4","v0.0.243","v0.0.242","v0.0.2","v0.0.240","v0.0.1","v0.0.240rc4","v0.0.1rc4","v0.0.240rc1","v0.0.240rc0","v0.0.1rc3","v0.0.1rc2","v0.0.1rc1","v0.0.1rc0","v0.0.239","v0.0.238","v0.0.237","v0.0.236","v0.0.235","v0.0.234","v0.0.233","v0.0.232","v0.0.231","v0.0.230","v0.0.229","v0.0.228","v0.0.227","v0.0.226","v0.0.225","v0.0.224","v0.0.223","v0.0.222","v0.0.221","v0.0.220","v0.0.219","v0.0.218","v0.0.217","v0.0.216","v0.0.215","v0.0.214","v0.0.213","v0.0.212","v0.0.211","v0.0.210","v0.0.209","v0.0.208","v0.0.207","v0.0.206","v0.0.205","v0.0.204","v0.0.202","v0.0.201","v0.0.200","v0.0.199","v0.0.198","v0.0.197","v0.0.196","v0.0.195","v0.0.194","v0.0.193","v0.0.192","v0.0.191","v0.0.190","v0.0.189","v0.0.188","v0.0.187","v0.0.186","v0.0.185","v0.0.184","v0.0.183","v0.0.182","v0.0.181","v0.0.180","v0.0.179","v0.0.178","v0.0.177","v0.0.175","v0.0.174","v0.0.173","v0.0.172","v0.0.171","v0.0.170","v0.0.169","v0.0.168","v0.0.167","v0.0.166","v0.0.165","v0.0.164","v0.0.163","v0.0.161","v0.0.162","v0.0.160","v0.0.159","v0.0.158","v0.0.157","v0.0.156","v0.0.155","v0.0.154","v0.0.153","v0.0.152","v0.0.151","v0.0.150","v0.0.149","v0.0.147","v0.0.146","v0.0.145","v0.0.144","v0.0.143","v0.0.142","v0.0.141","v0.0.140","v0.0.139","v0.0.138","v0.0.137","v0.0.136","v0.0.135","v0.0.134","v0.0.133","v0.0.132","v0.0.131","v0.0.130","v0.0.129","v0.0.128","v0.0.127","v0.0.126","v0.0.125","v0.0.124","v0.0.123","v0.0.122","v0.0.121","v0.0.120","v0.0.119","v0.0.118","v0.0.117","v0.0.116","v0.0.115","v0.0.114","v0.0.113","v0.0.112","v0.0.111","v0.0.110","v0.0.109","v0.0.108","v0.0.107","v0.0.106","v0.0.105","v0.0.104","v0.0.103","v0.0.102","v0.0.101","v0.0.100","v0.0.99","v0.0.98","v0.0.97","v0.0.96","v0.0.95","v0.0.94","v0.0.93","v0.0.92","v0.0.91","v0.0.90","v0.0.89","v0.0.88","v0.0.87","v0.0.86","v0.0.85","v0.0.84","v0.0.83","v0.0.82","v0.0.81","v0.0.80","v0.0.79","v0.0.78","v0.0.77","v0.0.76","v0.0.75","v0.0.74","v0.0.73","v0.0.72","v0.0.71","v0.0.70","v0.0.69","v0.0.68","v0.0.67","v0.0.66","v0.0.65","v0.0.64","0-9ecb7240a480720ec9d739b3877a52f76098a2b8","0-0.0.317"],"first_patched_version":"9ecb7240a480720ec9d739b3877a52f76098a2b8","reference_urls":["https://github.com/langchain-ai/langchain/commit/9ecb7240a480720ec9d739b3877a52f76098a2b8","https://github.com/langchain-ai/langchain/pull/11925","https://github.com/advisories/GHSA-655w-fm8m-m478"]},{"id":"GHSA-f73w-4m7g-ch9x","aliases":["CVE-2023-39631","PYSEC-2023-162","PYSEC-2023-163"],"summary":"Langchain vulnerable to arbitrary code execution via the evaluate function in the numexpr library","published":"2023-09-01T18:30:41Z","modified":"2025-02-20T23:01:00.348246Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.308"],"first_patched_version":"0.0.308","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-39631","https://github.com/langchain-ai/langchain/issues/8363","https://github.com/pydata/numexpr/issues/442","https://github.com/langchain-ai/langchain/pull/11302","https://github.com/pydata/numexpr/commit/4b2d89cf14e75030d27629925b9998e1e91d23c7","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/v0.0.308","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-162.yaml","https://github.com/pypa/advisory-database/tree/main/vulns/numexpr/PYSEC-2023-163.yaml"]},{"id":"PYSEC-2023-162","aliases":["CVE-2023-39631","GHSA-f73w-4m7g-ch9x","PYSEC-2023-163"],"summary":"","published":"2023-09-01T16:15:00Z","modified":"2023-11-08T04:13:15.129905Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0-0.0.308"],"first_patched_version":"0.0.308","reference_urls":["https://github.com/pydata/numexpr/issues/442","https://github.com/langchain-ai/langchain/issues/8363","https://github.com/langchain-ai/langchain/pull/11302"]},{"id":"GHSA-7gfq-f96f-g85j","aliases":["CVE-2023-36281","PYSEC-2023-151"],"summary":"langchain vulnerable to arbitrary code execution","published":"2023-08-22T21:30:27Z","modified":"2024-09-30T16:36:44.050961Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.312"],"first_patched_version":"0.0.312","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-36281","https://github.com/hwchase17/langchain/issues/4394","https://github.com/langchain-ai/langchain/pull/10252","https://github.com/langchain-ai/langchain/commit/22abeb9f6cc555591bf8e92b5e328e43aa07ff6c","https://aisec.today/LangChain-2e6244a313dd46139c5ef28cbcab9e55","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/v0.0.312","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-151.yaml"]},{"id":"PYSEC-2023-151","aliases":["CVE-2023-36281","GHSA-7gfq-f96f-g85j"],"summary":"","published":"2023-08-22T19:16:00Z","modified":"2026-06-10T17:02:00.098771930Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.18","0.0.19","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.171"],"first_patched_version":"0.0.171","reference_urls":["https://github.com/hwchase17/langchain/issues/4394","https://github.com/hwchase17/langchain/issues/4394","https://github.com/hwchase17/langchain/issues/4394","https://aisec.today/LangChain-2e6244a313dd46139c5ef28cbcab9e55","https://aisec.today/LangChain-2e6244a313dd46139c5ef28cbcab9e55","https://github.com/advisories/GHSA-7gfq-f96f-g85j"]},{"id":"GHSA-92j5-3459-qgp4","aliases":["CVE-2023-38896","PYSEC-2023-146"],"summary":"LangChain vulnerable to arbitrary code execution","published":"2023-08-15T18:31:32Z","modified":"2024-09-27T21:48:10.474794Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.236"],"first_patched_version":"0.0.236","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-38896","https://github.com/hwchase17/langchain/issues/5872","https://github.com/hwchase17/langchain/pull/6003","https://github.com/langchain-ai/langchain/commit/8ba9835b925473655914f63822775679e03ea137","https://github.com/langchain-ai/langchain/commit/e294ba475a355feb95003ed8f1a2b99942509a9e","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-146.yaml","https://twitter.com/llm_sec/status/1668711587287375876"]},{"id":"GHSA-fj32-q626-pjjc","aliases":["CVE-2023-38860","PYSEC-2023-145"],"summary":"LangChain vulnerable to arbitrary code execution","published":"2023-08-15T18:31:32Z","modified":"2024-09-27T18:01:17.289232Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-38860","https://github.com/hwchase17/langchain/issues/7641","https://github.com/langchain-ai/langchain/issues/7641","https://github.com/langchain-ai/langchain/pull/8092","https://github.com/langchain-ai/langchain/pull/8425","https://github.com/langchain-ai/langchain/commit/d353d668e4b0514122a443cef91de7f76fea4245","https://github.com/langchain-ai/langchain/commit/fab24457bcf8ede882abd11419769c92bc4e7751","https://github.com/hwchase17/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-145.yaml"]},{"id":"GHSA-prgp-w7vf-ch62","aliases":["CVE-2023-39659","PYSEC-2023-147"],"summary":"LangChain vulnerable to arbitrary code execution","published":"2023-08-15T18:31:32Z","modified":"2024-09-27T21:33:25.955251Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.247","0.0.248","0.0.249","0.0.25","0.0.250","0.0.251","0.0.252","0.0.253","0.0.254","0.0.255","0.0.256","0.0.257","0.0.258","0.0.259","0.0.26","0.0.260","0.0.261","0.0.262","0.0.263","0.0.264","0.0.265","0.0.266","0.0.267","0.0.268","0.0.269","0.0.27","0.0.270","0.0.271","0.0.272","0.0.273","0.0.274","0.0.275","0.0.276","0.0.277","0.0.278","0.0.279","0.0.28","0.0.281","0.0.283","0.0.284","0.0.285","0.0.286","0.0.287","0.0.288","0.0.289","0.0.29","0.0.290","0.0.291","0.0.292","0.0.293","0.0.294","0.0.295","0.0.296","0.0.297","0.0.298","0.0.299","0.0.3","0.0.30","0.0.300","0.0.301","0.0.302","0.0.303","0.0.304","0.0.305","0.0.306","0.0.307","0.0.308","0.0.309","0.0.31","0.0.310","0.0.311","0.0.312","0.0.313","0.0.314","0.0.315","0.0.316","0.0.317","0.0.318","0.0.319","0.0.32","0.0.320","0.0.321","0.0.322","0.0.323","0.0.324","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.325"],"first_patched_version":"0.0.325","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-39659","https://github.com/langchain-ai/langchain/issues/7700","https://github.com/langchain-ai/langchain/pull/12427","https://github.com/langchain-ai/langchain/pull/5640","https://github.com/langchain-ai/langchain/commit/cadfce295f8a33828fc635c2e5ea28b883e5c992","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/v0.0.325","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-147.yaml"]},{"id":"PYSEC-2023-145","aliases":["CVE-2023-38860","GHSA-fj32-q626-pjjc"],"summary":"","published":"2023-08-15T17:15:00Z","modified":"2026-06-10T17:01:59.588223152Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://github.com/langchain-ai/langchain/issues/7641","https://github.com/langchain-ai/langchain/issues/7641","https://github.com/advisories/GHSA-fj32-q626-pjjc"]},{"id":"PYSEC-2023-146","aliases":["CVE-2023-38896","GHSA-92j5-3459-qgp4"],"summary":"","published":"2023-08-15T17:15:00Z","modified":"2026-06-10T17:01:59.667484695Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.195"],"first_patched_version":"0.0.195","reference_urls":["https://github.com/hwchase17/langchain/issues/5872","https://github.com/hwchase17/langchain/issues/5872","https://github.com/hwchase17/langchain/issues/5872","https://github.com/hwchase17/langchain/pull/6003","https://twitter.com/llm_sec/status/1668711587287375876","https://github.com/advisories/GHSA-92j5-3459-qgp4"]},{"id":"PYSEC-2023-147","aliases":["CVE-2023-39659","GHSA-prgp-w7vf-ch62"],"summary":"","published":"2023-08-15T17:15:00Z","modified":"2026-06-10T17:02:00.020660387Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.233"],"first_patched_version":"0.0.233","reference_urls":["https://github.com/langchain-ai/langchain/issues/7700","https://github.com/langchain-ai/langchain/issues/7700","https://github.com/langchain-ai/langchain/pull/5640","https://github.com/langchain-ai/langchain/pull/5640","https://github.com/advisories/GHSA-prgp-w7vf-ch62"]},{"id":"GHSA-gwqq-6vq7-5j86","aliases":["CVE-2023-36095","PYSEC-2023-138"],"summary":"langchain Code Injection vulnerability","published":"2023-08-05T03:30:19Z","modified":"2024-09-27T18:01:36.035324Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.236"],"first_patched_version":"0.0.236","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-36095","https://github.com/langchain-ai/langchain/issues/5872","https://github.com/langchain-ai/langchain/pull/6003","https://github.com/langchain-ai/langchain/pull/7870","https://github.com/langchain-ai/langchain/commit/8ba9835b925473655914f63822775679e03ea137","https://github.com/langchain-ai/langchain/commit/e294ba475a355feb95003ed8f1a2b99942509a9e","https://github.com/hwchase17/langchain","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/commits/v0.0.236?after=4d8b48bdb3f17c764c5c2e3c7140071603869e74+34&branch=v0.0.236&qualified_name=refs%2Ftags%2Fv0.0.236","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-138.yaml","http://langchain.com"]},{"id":"PYSEC-2023-138","aliases":["CVE-2023-36095","GHSA-gwqq-6vq7-5j86"],"summary":"","published":"2023-08-05T03:15:00Z","modified":"2026-06-10T17:01:59.374667036Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.236"],"first_patched_version":"0.0.236","reference_urls":["https://github.com/hwchase17/langchain","http://langchain.com","https://github.com/langchain-ai/langchain/issues/5872","https://github.com/langchain-ai/langchain/issues/5872","https://github.com/langchain-ai/langchain/issues/5872","https://github.com/advisories/GHSA-gwqq-6vq7-5j86"]},{"id":"GHSA-57fc-8q82-gfp3","aliases":["CVE-2023-36188","PYSEC-2023-109"],"summary":"langchain vulnerable to arbitrary code execution","published":"2023-07-06T15:30:33Z","modified":"2025-02-16T05:28:15.197797Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.236"],"first_patched_version":"0.0.236","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-36188","https://github.com/langchain-ai/langchain/issues/5872","https://github.com/langchain-ai/langchain/pull/6003","https://github.com/langchain-ai/langchain/pull/8425","https://github.com/langchain-ai/langchain/commit/e294ba475a355feb95003ed8f1a2b99942509a9e","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-109.yaml"]},{"id":"GHSA-7q94-qpjr-xpgm","aliases":["CVE-2023-36189","PYSEC-2023-110"],"summary":"langchain SQL Injection vulnerability","published":"2023-07-06T15:30:33Z","modified":"2024-10-21T21:01:20.237777Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-36189","https://github.com/hwchase17/langchain/issues/5923","https://github.com/langchain-ai/langchain/issues/5923","https://github.com/langchain-ai/langchain/issues/5923#issuecomment-1696053841","https://github.com/hwchase17/langchain/pull/6051","https://github.com/langchain-ai/langchain/pull/8425","https://github.com/langchain-ai/langchain/commit/fab24457bcf8ede882abd11419769c92bc4e7751","https://gist.github.com/rharang/9c58d39db8c01db5b7c888e467c0533f","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-110.yaml"]},{"id":"PYSEC-2023-109","aliases":["CVE-2023-36188","GHSA-57fc-8q82-gfp3"],"summary":"","published":"2023-07-06T14:15:00Z","modified":"2026-06-10T17:01:09.326674805Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://github.com/langchain-ai/langchain/issues/5872","https://github.com/langchain-ai/langchain/pull/8425","https://github.com/advisories/GHSA-57fc-8q82-gfp3"]},{"id":"PYSEC-2023-110","aliases":["CVE-2023-36189","GHSA-7q94-qpjr-xpgm"],"summary":"","published":"2023-07-06T14:15:00Z","modified":"2026-06-10T17:01:09.253570203Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://github.com/langchain-ai/langchain/pull/8425","https://github.com/langchain-ai/langchain/issues/5923","https://github.com/advisories/GHSA-7q94-qpjr-xpgm"]},{"id":"GHSA-2qmj-7962-cjq8","aliases":["CVE-2023-36258","PYSEC-2023-98"],"summary":"langchain arbitrary code execution vulnerability","published":"2023-07-03T21:30:57Z","modified":"2024-11-22T23:04:53.400191Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-36258","https://github.com/langchain-ai/langchain/issues/5872","https://github.com/langchain-ai/langchain/issues/5872#issuecomment-1697785619","https://github.com/langchain-ai/langchain/pull/6003","https://github.com/langchain-ai/langchain/pull/7870","https://github.com/langchain-ai/langchain/pull/8425","https://github.com/langchain-ai/langchain/commit/8ba9835b925473655914f63822775679e03ea137","https://github.com/langchain-ai/langchain/commit/e294ba475a355feb95003ed8f1a2b99942509a9e","https://github.com/langchain-ai/langchain/commit/fab24457bcf8ede882abd11419769c92bc4e7751","https://github.com/hwchase17/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-98.yaml"]},{"id":"PYSEC-2023-98","aliases":["CVE-2023-36258","GHSA-2qmj-7962-cjq8"],"summary":"","published":"2023-07-03T21:15:00Z","modified":"2026-06-10T17:01:58.047656384Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://github.com/langchain-ai/langchain/issues/5872","https://github.com/langchain-ai/langchain/issues/5872","https://github.com/advisories/GHSA-2qmj-7962-cjq8"]},{"id":"GHSA-6643-h7h5-x9wh","aliases":["CVE-2023-34541","PYSEC-2023-92"],"summary":"Langchain vulnerable to arbitrary code execution","published":"2023-06-20T15:31:09Z","modified":"2024-12-07T05:37:44.789430Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-34541","https://github.com/langchain-ai/langchain/issues/4849","https://github.com/langchain-ai/langchain/issues/4849#issuecomment-1697896569","https://github.com/langchain-ai/langchain/pull/8425","https://github.com/langchain-ai/langchain/commit/fab24457bcf8ede882abd11419769c92bc4e7751","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-92.yaml"]},{"id":"PYSEC-2023-92","aliases":["CVE-2023-34541","GHSA-6643-h7h5-x9wh"],"summary":"","published":"2023-06-20T15:15:00Z","modified":"2026-06-10T17:01:57.456705303Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.225","0.0.226","0.0.227","0.0.228","0.0.229","0.0.23","0.0.230","0.0.231","0.0.232","0.0.233","0.0.234","0.0.235","0.0.236","0.0.237","0.0.238","0.0.239","0.0.24","0.0.240","0.0.240rc0","0.0.240rc1","0.0.240rc4","0.0.242","0.0.243","0.0.244","0.0.245","0.0.246","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.247"],"first_patched_version":"0.0.247","reference_urls":["https://github.com/langchain-ai/langchain/issues/4849","https://github.com/langchain-ai/langchain/issues/4849","https://github.com/advisories/GHSA-6643-h7h5-x9wh"]},{"id":"GHSA-x32c-59v5-h7fg","aliases":["CVE-2023-34540","PYSEC-2023-91"],"summary":"Langchain OS Command Injection vulnerability","published":"2023-06-14T15:30:39Z","modified":"2025-02-21T05:28:32.059487Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.225"],"first_patched_version":"0.0.225","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-34540","https://github.com/hwchase17/langchain/issues/4833","https://github.com/langchain-ai/langchain/issues/4833","https://github.com/langchain-ai/langchain/pull/6992","https://github.com/langchain-ai/langchain/commit/a2f191a32229256dd41deadf97786fe41ce04cbb","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/v0.0.225","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-91.yaml"]},{"id":"PYSEC-2023-91","aliases":["CVE-2023-34540","GHSA-x32c-59v5-h7fg"],"summary":"","published":"2023-06-14T15:15:00Z","modified":"2026-06-10T17:01:57.225134351Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.132","0.0.133","0.0.134","0.0.135","0.0.136","0.0.137","0.0.138","0.0.139","0.0.14","0.0.140","0.0.141","0.0.142","0.0.143","0.0.144","0.0.145","0.0.146","0.0.147","0.0.148","0.0.149","0.0.15","0.0.150","0.0.151","0.0.152","0.0.153","0.0.154","0.0.155","0.0.156","0.0.157","0.0.158","0.0.159","0.0.16","0.0.160","0.0.161","0.0.162","0.0.163","0.0.164","0.0.165","0.0.166","0.0.167","0.0.168","0.0.169","0.0.17","0.0.170","0.0.171","0.0.172","0.0.173","0.0.174","0.0.175","0.0.176","0.0.177","0.0.178","0.0.179","0.0.18","0.0.180","0.0.181","0.0.182","0.0.183","0.0.184","0.0.185","0.0.186","0.0.187","0.0.188","0.0.189","0.0.19","0.0.190","0.0.191","0.0.192","0.0.193","0.0.194","0.0.195","0.0.196","0.0.197","0.0.198","0.0.199","0.0.2","0.0.20","0.0.200","0.0.201","0.0.202","0.0.203","0.0.204","0.0.205","0.0.206","0.0.207","0.0.208","0.0.209","0.0.21","0.0.210","0.0.211","0.0.212","0.0.213","0.0.214","0.0.215","0.0.216","0.0.217","0.0.218","0.0.219","0.0.22","0.0.220","0.0.221","0.0.222","0.0.223","0.0.224","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.225"],"first_patched_version":"0.0.225","reference_urls":["https://github.com/langchain-ai/langchain/issues/4833","https://github.com/langchain-ai/langchain/issues/4833","https://github.com/langchain-ai/langchain/pull/6992","https://github.com/advisories/GHSA-x32c-59v5-h7fg"]},{"id":"GHSA-fprp-p869-w6q2","aliases":["CVE-2023-29374","PYSEC-2023-18"],"summary":"LangChain vulnerable to code injection","published":"2023-04-05T03:30:17Z","modified":"2025-02-12T18:43:20.461717Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.131"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-29374","https://github.com/hwchase17/langchain/issues/1026","https://github.com/hwchase17/langchain/issues/814","https://github.com/hwchase17/langchain/pull/1119","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2023-18.yaml","https://twitter.com/rharang/status/1641899743608463365/photo/1"]},{"id":"PYSEC-2023-18","aliases":["CVE-2023-29374","GHSA-fprp-p869-w6q2"],"summary":"","published":"2023-04-05T02:15:00Z","modified":"2026-06-10T17:01:57.057107444Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.100","0.0.101","0.0.101rc0","0.0.102","0.0.102rc0","0.0.103","0.0.104","0.0.105","0.0.106","0.0.107","0.0.108","0.0.109","0.0.11","0.0.110","0.0.111","0.0.112","0.0.113","0.0.114","0.0.115","0.0.116","0.0.117","0.0.118","0.0.119","0.0.12","0.0.120","0.0.121","0.0.122","0.0.123","0.0.124","0.0.125","0.0.126","0.0.127","0.0.128","0.0.129","0.0.13","0.0.130","0.0.131","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.85","0.0.86","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.0.93","0.0.94","0.0.95","0.0.96","0.0.97","0.0.98","0.0.99","0.0.99rc0","0-0.0.132"],"first_patched_version":"0.0.132","reference_urls":["https://twitter.com/rharang/status/1641899743608463365/photo/1","https://github.com/hwchase17/langchain/pull/1119","https://github.com/hwchase17/langchain/issues/814","https://github.com/hwchase17/langchain/issues/1026","https://github.com/advisories/GHSA-fprp-p869-w6q2"]}]},{"package":"langchain-core","ecosystem":"PyPI","category":"agent-framework","description":"LangChain core abstractions","homepage":null,"fetched_at":"2026-07-03T05:45:55.269Z","advisories_count":11,"open_count":11,"withdrawn_count":0,"latest_advisory_id":"PYSEC-2026-373","latest_published":"2026-06-29T11:50:38.732432Z","advisories":[{"id":"PYSEC-2026-373","aliases":["CVE-2025-68664","GHSA-c67j-w6g6-q2cm"],"summary":"LangChain serialization injection vulnerability enables secret extraction in dumps/loads APIs","published":"2026-06-29T11:50:38.732432Z","modified":"2026-07-02T13:00:05.018724776Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.13rc1","0.0.13rc2","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.12rc1","0.1.13","0.1.14","0.1.15","0.1.15rc1","0.1.15rc2","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32","0.1.33","0.1.33rc1","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.4","0.1.40","0.1.41","0.1.42","0.1.42rc1","0.1.43","0.1.44","0.1.45","0.1.46","0.1.47","0.1.47rc1","0.1.48","0.1.49","0.1.5","0.1.50","0.1.51","0.1.52","0.1.53","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.21","0.2.22","0.2.23","0.2.24","0.2.25","0.2.26","0.2.27","0.2.28","0.2.29","0.2.29rc1","0.2.2rc1","0.2.3","0.2.30","0.2.31","0.2.32","0.2.33","0.2.34","0.2.35","0.2.36","0.2.37","0.2.38","0.2.39","0.2.4","0.2.40","0.2.41","0.2.42","0.2.43","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.0.dev0","0.3.0.dev1","0.3.0.dev2","0.3.0.dev3","0.3.0.dev4","0.3.0.dev5","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.34rc1","0.3.34rc2","0.3.35","0.3.36","0.3.37","0.3.38","0.3.39","0.3.4","0.3.40","0.3.41","0.3.42","0.3.43","0.3.44","0.3.45","0.3.45rc1","0.3.46","0.3.47","0.3.48","0.3.49","0.3.5","0.3.50","0.3.51","0.3.52","0.3.53","0.3.54","0.3.55","0.3.56","0.3.56rc1","0.3.57","0.3.58","0.3.59","0.3.6","0.3.60","0.3.61","0.3.62","0.3.63","0.3.64","0.3.65","0.3.66","0.3.67","0.3.68","0.3.69","0.3.7","0.3.70","0.3.71","0.3.72","0.3.73","0.3.74","0.3.75","0.3.76","0.3.77","0.3.78","0.3.79","0.3.8","0.3.80","0.3.9","1.0.0","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","0-0.3.81"],"first_patched_version":"0.3.81","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-c67j-w6g6-q2cm","https://nvd.nist.gov/vuln/detail/CVE-2025-68664","https://github.com/langchain-ai/langchain/pull/34455","https://github.com/langchain-ai/langchain/pull/34458","https://github.com/langchain-ai/langchain/commit/5ec0fa69de31bbe3d76e4cf9cd65a6accb8466c8","https://github.com/langchain-ai/langchain/commit/d9ec4c5cc78960abd37da79b0250f5642e6f0ce6","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/langchain-core%3D%3D0.3.81","https://github.com/langchain-ai/langchain/releases/tag/langchain-core%3D%3D1.2.5","https://pypi.org/project/langchain-core","https://github.com/advisories/GHSA-c67j-w6g6-q2cm"]},{"id":"GHSA-pjwx-r37v-7724","aliases":["CVE-2026-44843"],"summary":"LangChain vulnerable to unsafe deserialization of attacker-controlled objects through overly broad `load()` allowlists","published":"2026-05-08T23:07:32Z","modified":"2026-06-08T23:45:16.324452954Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["1.0.0","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0","1.2.1","1.2.10","1.2.11","1.2.12","1.2.13","1.2.14","1.2.15","1.2.16","1.2.17","1.2.18","1.2.19","1.2.2","1.2.20","1.2.21","1.2.22","1.2.23","1.2.24","1.2.25","1.2.26","1.2.27","1.2.28","1.2.29","1.2.3","1.2.30","1.2.31","1.2.4","1.2.5","1.2.6","1.2.7","1.2.8","1.2.9","1.3.0","1.3.0a1","1.3.0a2","1.3.0a3","1.3.1","1.3.2","1.0.0-1.3.3","0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.13rc1","0.0.13rc2","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.12rc1","0.1.13","0.1.14","0.1.15","0.1.15rc1","0.1.15rc2","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32","0.1.33","0.1.33rc1","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.4","0.1.40","0.1.41","0.1.42","0.1.42rc1","0.1.43","0.1.44","0.1.45","0.1.46","0.1.47","0.1.47rc1","0.1.48","0.1.49","0.1.5","0.1.50","0.1.51","0.1.52","0.1.53","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.21","0.2.22","0.2.23","0.2.24","0.2.25","0.2.26","0.2.27","0.2.28","0.2.29","0.2.29rc1","0.2.2rc1","0.2.3","0.2.30","0.2.31","0.2.32","0.2.33","0.2.34","0.2.35","0.2.36","0.2.37","0.2.38","0.2.39","0.2.4","0.2.40","0.2.41","0.2.42","0.2.43","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.0.dev0","0.3.0.dev1","0.3.0.dev2","0.3.0.dev3","0.3.0.dev4","0.3.0.dev5","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.34rc1","0.3.34rc2","0.3.35","0.3.36","0.3.37","0.3.38","0.3.39","0.3.4","0.3.40","0.3.41","0.3.42","0.3.43","0.3.44","0.3.45","0.3.45rc1","0.3.46","0.3.47","0.3.48","0.3.49","0.3.5","0.3.50","0.3.51","0.3.52","0.3.53","0.3.54","0.3.55","0.3.56","0.3.56rc1","0.3.57","0.3.58","0.3.59","0.3.6","0.3.60","0.3.61","0.3.62","0.3.63","0.3.64","0.3.65","0.3.66","0.3.67","0.3.68","0.3.69","0.3.7","0.3.70","0.3.71","0.3.72","0.3.73","0.3.74","0.3.75","0.3.76","0.3.77","0.3.78","0.3.79","0.3.8","0.3.80","0.3.81","0.3.82","0.3.83","0.3.84","0.3.9","0-0.3.85"],"first_patched_version":"1.3.3","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-pjwx-r37v-7724","https://nvd.nist.gov/vuln/detail/CVE-2026-44843","https://github.com/langchain-ai/langchain"]},{"id":"GHSA-926x-3r5x-gfhw","aliases":["CVE-2026-40087"],"summary":"LangChain has incomplete f-string validation in prompt templates","published":"2026-04-08T21:51:32Z","modified":"2026-04-17T18:29:21.318527065Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.13rc1","0.0.13rc2","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.12rc1","0.1.13","0.1.14","0.1.15","0.1.15rc1","0.1.15rc2","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32","0.1.33","0.1.33rc1","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.4","0.1.40","0.1.41","0.1.42","0.1.42rc1","0.1.43","0.1.44","0.1.45","0.1.46","0.1.47","0.1.47rc1","0.1.48","0.1.49","0.1.5","0.1.50","0.1.51","0.1.52","0.1.53","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.21","0.2.22","0.2.23","0.2.24","0.2.25","0.2.26","0.2.27","0.2.28","0.2.29","0.2.29rc1","0.2.2rc1","0.2.3","0.2.30","0.2.31","0.2.32","0.2.33","0.2.34","0.2.35","0.2.36","0.2.37","0.2.38","0.2.39","0.2.4","0.2.40","0.2.41","0.2.42","0.2.43","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.0.dev0","0.3.0.dev1","0.3.0.dev2","0.3.0.dev3","0.3.0.dev4","0.3.0.dev5","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.34rc1","0.3.34rc2","0.3.35","0.3.36","0.3.37","0.3.38","0.3.39","0.3.4","0.3.40","0.3.41","0.3.42","0.3.43","0.3.44","0.3.45","0.3.45rc1","0.3.46","0.3.47","0.3.48","0.3.49","0.3.5","0.3.50","0.3.51","0.3.52","0.3.53","0.3.54","0.3.55","0.3.56","0.3.56rc1","0.3.57","0.3.58","0.3.59","0.3.6","0.3.60","0.3.61","0.3.62","0.3.63","0.3.64","0.3.65","0.3.66","0.3.67","0.3.68","0.3.69","0.3.7","0.3.70","0.3.71","0.3.72","0.3.73","0.3.74","0.3.75","0.3.76","0.3.77","0.3.78","0.3.79","0.3.8","0.3.80","0.3.81","0.3.82","0.3.83","0.3.9","0-0.3.84","1.0.0","1.0.0a1","1.0.0a2","1.0.0a3","1.0.0a4","1.0.0a5","1.0.0a6","1.0.0a7","1.0.0a8","1.0.0rc1","1.0.0rc2","1.0.0rc3","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0","1.2.1","1.2.10","1.2.11","1.2.12","1.2.13","1.2.14","1.2.15","1.2.16","1.2.17","1.2.18","1.2.19","1.2.2","1.2.20","1.2.21","1.2.22","1.2.23","1.2.24","1.2.25","1.2.26","1.2.27","1.2.3","1.2.4","1.2.5","1.2.6","1.2.7","1.2.8","1.2.9","1.0.0a1-1.2.28"],"first_patched_version":"0.3.84","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-926x-3r5x-gfhw","https://nvd.nist.gov/vuln/detail/CVE-2026-40087","https://github.com/langchain-ai/langchain/pull/36612","https://github.com/langchain-ai/langchain/pull/36613","https://github.com/langchain-ai/langchain/commit/6bab0ba3c12328008ddca3e0d54ff5a6151cd27b","https://github.com/langchain-ai/langchain/commit/af2ed47c6f008cdd551f3c0d87db3774c8dfe258","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/langchain-core%3D%3D0.3.84","https://github.com/langchain-ai/langchain/releases/tag/langchain-core%3D%3D1.2.28"]},{"id":"GHSA-qh6h-p6c9-ff54","aliases":["CVE-2026-34070"],"summary":"LangChain Core has Path Traversal vulnerabilites in legacy `load_prompt` functions","published":"2026-03-27T19:45:00Z","modified":"2026-05-08T06:14:29.556339366Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.13rc1","0.0.13rc2","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.12rc1","0.1.13","0.1.14","0.1.15","0.1.15rc1","0.1.15rc2","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32","0.1.33","0.1.33rc1","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.4","0.1.40","0.1.41","0.1.42","0.1.42rc1","0.1.43","0.1.44","0.1.45","0.1.46","0.1.47","0.1.47rc1","0.1.48","0.1.49","0.1.5","0.1.50","0.1.51","0.1.52","0.1.53","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.21","0.2.22","0.2.23","0.2.24","0.2.25","0.2.26","0.2.27","0.2.28","0.2.29","0.2.29rc1","0.2.2rc1","0.2.3","0.2.30","0.2.31","0.2.32","0.2.33","0.2.34","0.2.35","0.2.36","0.2.37","0.2.38","0.2.39","0.2.4","0.2.40","0.2.41","0.2.42","0.2.43","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.0.dev0","0.3.0.dev1","0.3.0.dev2","0.3.0.dev3","0.3.0.dev4","0.3.0.dev5","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.34rc1","0.3.34rc2","0.3.35","0.3.36","0.3.37","0.3.38","0.3.39","0.3.4","0.3.40","0.3.41","0.3.42","0.3.43","0.3.44","0.3.45","0.3.45rc1","0.3.46","0.3.47","0.3.48","0.3.49","0.3.5","0.3.50","0.3.51","0.3.52","0.3.53","0.3.54","0.3.55","0.3.56","0.3.56rc1","0.3.57","0.3.58","0.3.59","0.3.6","0.3.60","0.3.61","0.3.62","0.3.63","0.3.64","0.3.65","0.3.66","0.3.67","0.3.68","0.3.69","0.3.7","0.3.70","0.3.71","0.3.72","0.3.73","0.3.74","0.3.75","0.3.76","0.3.77","0.3.78","0.3.79","0.3.8","0.3.80","0.3.81","0.3.82","0.3.83","0.3.9","0.4.0.dev0","1.0.0","1.0.0a1","1.0.0a2","1.0.0a3","1.0.0a4","1.0.0a5","1.0.0a6","1.0.0a7","1.0.0a8","1.0.0rc1","1.0.0rc2","1.0.0rc3","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0","1.2.1","1.2.10","1.2.11","1.2.12","1.2.13","1.2.14","1.2.15","1.2.16","1.2.17","1.2.18","1.2.19","1.2.2","1.2.20","1.2.21","1.2.3","1.2.4","1.2.5","1.2.6","1.2.7","1.2.8","1.2.9","0-1.2.22"],"first_patched_version":"1.2.22","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-qh6h-p6c9-ff54","https://nvd.nist.gov/vuln/detail/CVE-2026-34070","https://github.com/langchain-ai/langchain/commit/27add913474e01e33bededf4096151130ba0d47c","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/langchain-core==1.2.22"]},{"id":"GHSA-2g6r-c272-w58r","aliases":["CVE-2026-26013"],"summary":"LangChain affected by SSRF via image_url token counting in ChatOpenAI.get_num_tokens_from_messages","published":"2026-02-11T14:23:13Z","modified":"2026-02-11T14:44:37.030028Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.13rc1","0.0.13rc2","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.12rc1","0.1.13","0.1.14","0.1.15","0.1.15rc1","0.1.15rc2","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32","0.1.33","0.1.33rc1","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.4","0.1.40","0.1.41","0.1.42","0.1.42rc1","0.1.43","0.1.44","0.1.45","0.1.46","0.1.47","0.1.47rc1","0.1.48","0.1.49","0.1.5","0.1.50","0.1.51","0.1.52","0.1.53","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.21","0.2.22","0.2.23","0.2.24","0.2.25","0.2.26","0.2.27","0.2.28","0.2.29","0.2.29rc1","0.2.2rc1","0.2.3","0.2.30","0.2.31","0.2.32","0.2.33","0.2.34","0.2.35","0.2.36","0.2.37","0.2.38","0.2.39","0.2.4","0.2.40","0.2.41","0.2.42","0.2.43","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.0.dev0","0.3.0.dev1","0.3.0.dev2","0.3.0.dev3","0.3.0.dev4","0.3.0.dev5","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.34rc1","0.3.34rc2","0.3.35","0.3.36","0.3.37","0.3.38","0.3.39","0.3.4","0.3.40","0.3.41","0.3.42","0.3.43","0.3.44","0.3.45","0.3.45rc1","0.3.46","0.3.47","0.3.48","0.3.49","0.3.5","0.3.50","0.3.51","0.3.52","0.3.53","0.3.54","0.3.55","0.3.56","0.3.56rc1","0.3.57","0.3.58","0.3.59","0.3.6","0.3.60","0.3.61","0.3.62","0.3.63","0.3.64","0.3.65","0.3.66","0.3.67","0.3.68","0.3.69","0.3.7","0.3.70","0.3.71","0.3.72","0.3.73","0.3.74","0.3.75","0.3.76","0.3.77","0.3.78","0.3.79","0.3.8","0.3.80","0.3.81","0.3.82","0.3.83","0.3.9","0.4.0.dev0","1.0.0","1.0.0a1","1.0.0a2","1.0.0a3","1.0.0a4","1.0.0a5","1.0.0a6","1.0.0a7","1.0.0a8","1.0.0rc1","1.0.0rc2","1.0.0rc3","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0","1.2.1","1.2.10","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.2.7","1.2.8","1.2.9","0-1.2.11"],"first_patched_version":"1.2.11","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-2g6r-c272-w58r","https://nvd.nist.gov/vuln/detail/CVE-2026-26013","https://github.com/langchain-ai/langchain/commit/2b4b1dc29a833d4053deba4c2b77a3848c834565","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/langchain-core%3D%3D1.2.11"]},{"id":"GHSA-c67j-w6g6-q2cm","aliases":["CVE-2025-68664","PYSEC-2026-373"],"summary":"LangChain serialization injection vulnerability enables secret extraction in dumps/loads APIs","published":"2025-12-23T18:46:13Z","modified":"2026-06-29T12:26:19.615612359Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["1.0.0","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","1.0.0-1.2.5","0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.13rc1","0.0.13rc2","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.12rc1","0.1.13","0.1.14","0.1.15","0.1.15rc1","0.1.15rc2","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32","0.1.33","0.1.33rc1","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.4","0.1.40","0.1.41","0.1.42","0.1.42rc1","0.1.43","0.1.44","0.1.45","0.1.46","0.1.47","0.1.47rc1","0.1.48","0.1.49","0.1.5","0.1.50","0.1.51","0.1.52","0.1.53","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.21","0.2.22","0.2.23","0.2.24","0.2.25","0.2.26","0.2.27","0.2.28","0.2.29","0.2.29rc1","0.2.2rc1","0.2.3","0.2.30","0.2.31","0.2.32","0.2.33","0.2.34","0.2.35","0.2.36","0.2.37","0.2.38","0.2.39","0.2.4","0.2.40","0.2.41","0.2.42","0.2.43","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.0.dev0","0.3.0.dev1","0.3.0.dev2","0.3.0.dev3","0.3.0.dev4","0.3.0.dev5","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.34rc1","0.3.34rc2","0.3.35","0.3.36","0.3.37","0.3.38","0.3.39","0.3.4","0.3.40","0.3.41","0.3.42","0.3.43","0.3.44","0.3.45","0.3.45rc1","0.3.46","0.3.47","0.3.48","0.3.49","0.3.5","0.3.50","0.3.51","0.3.52","0.3.53","0.3.54","0.3.55","0.3.56","0.3.56rc1","0.3.57","0.3.58","0.3.59","0.3.6","0.3.60","0.3.61","0.3.62","0.3.63","0.3.64","0.3.65","0.3.66","0.3.67","0.3.68","0.3.69","0.3.7","0.3.70","0.3.71","0.3.72","0.3.73","0.3.74","0.3.75","0.3.76","0.3.77","0.3.78","0.3.79","0.3.8","0.3.80","0.3.9","0-0.3.81"],"first_patched_version":"1.2.5","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-c67j-w6g6-q2cm","https://nvd.nist.gov/vuln/detail/CVE-2025-68664","https://github.com/langchain-ai/langchain/pull/34455","https://github.com/langchain-ai/langchain/pull/34458","https://github.com/langchain-ai/langchain/commit/5ec0fa69de31bbe3d76e4cf9cd65a6accb8466c8","https://github.com/langchain-ai/langchain/commit/d9ec4c5cc78960abd37da79b0250f5642e6f0ce6","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/langchain-core%3D%3D0.3.81","https://github.com/langchain-ai/langchain/releases/tag/langchain-core%3D%3D1.2.5"]},{"id":"GHSA-6qv9-48xg-fc7f","aliases":["CVE-2025-65106"],"summary":"LangChain Vulnerable to Template Injection via Attribute Access in Prompt Templates","published":"2025-11-20T17:42:12Z","modified":"2026-02-04T03:13:56.679078Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["1.0.0","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.0-1.0.7","0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.13rc1","0.0.13rc2","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.12rc1","0.1.13","0.1.14","0.1.15","0.1.15rc1","0.1.15rc2","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32","0.1.33","0.1.33rc1","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.4","0.1.40","0.1.41","0.1.42","0.1.42rc1","0.1.43","0.1.44","0.1.45","0.1.46","0.1.47","0.1.47rc1","0.1.48","0.1.49","0.1.5","0.1.50","0.1.51","0.1.52","0.1.53","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.0rc1","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.21","0.2.22","0.2.23","0.2.24","0.2.25","0.2.26","0.2.27","0.2.28","0.2.29","0.2.29rc1","0.2.2rc1","0.2.3","0.2.30","0.2.31","0.2.32","0.2.33","0.2.34","0.2.35","0.2.36","0.2.37","0.2.38","0.2.39","0.2.4","0.2.40","0.2.41","0.2.42","0.2.43","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.0.dev0","0.3.0.dev1","0.3.0.dev2","0.3.0.dev3","0.3.0.dev4","0.3.0.dev5","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.34rc1","0.3.34rc2","0.3.35","0.3.36","0.3.37","0.3.38","0.3.39","0.3.4","0.3.40","0.3.41","0.3.42","0.3.43","0.3.44","0.3.45","0.3.45rc1","0.3.46","0.3.47","0.3.48","0.3.49","0.3.5","0.3.50","0.3.51","0.3.52","0.3.53","0.3.54","0.3.55","0.3.56","0.3.56rc1","0.3.57","0.3.58","0.3.59","0.3.6","0.3.60","0.3.61","0.3.62","0.3.63","0.3.64","0.3.65","0.3.66","0.3.67","0.3.68","0.3.69","0.3.7","0.3.70","0.3.71","0.3.72","0.3.73","0.3.74","0.3.75","0.3.76","0.3.77","0.3.78","0.3.79","0.3.8","0.3.9","0-0.3.80"],"first_patched_version":"1.0.7","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-6qv9-48xg-fc7f","https://nvd.nist.gov/vuln/detail/CVE-2025-65106","https://github.com/langchain-ai/langchain/commit/c4b6ba254e1a49ed91f2e268e6484011c540542a","https://github.com/langchain-ai/langchain/commit/fa7789d6c21222b85211755d822ef698d3b34e00","https://github.com/langchain-ai/langchain"]},{"id":"GHSA-5chr-fjjv-38qv","aliases":["CVE-2024-10940"],"summary":"langchain-core allows unauthorized users to read arbitrary files from the host file system","published":"2025-03-20T12:32:41Z","modified":"2025-05-20T18:42:14.491071Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1.17","0.1.18","0.1.19","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.30","0.1.31","0.1.32","0.1.33","0.1.33rc1","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.40","0.1.41","0.1.42","0.1.42rc1","0.1.43","0.1.44","0.1.45","0.1.46","0.1.47","0.1.47rc1","0.1.48","0.1.49","0.1.50","0.1.51","0.1.52","0.1.17-0.1.53","0.2.0","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.21","0.2.22","0.2.23","0.2.24","0.2.25","0.2.26","0.2.27","0.2.28","0.2.29","0.2.29rc1","0.2.2rc1","0.2.3","0.2.30","0.2.31","0.2.32","0.2.33","0.2.34","0.2.35","0.2.36","0.2.37","0.2.38","0.2.39","0.2.4","0.2.40","0.2.41","0.2.42","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.2.0-0.2.43","0.3.0","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.2","0.3.3","0.3.4","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.3.0-0.3.15"],"first_patched_version":"0.1.53","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-10940","https://github.com/langchain-ai/langchain/commit/7d481f10102f43559cc57bcad7eba291067939ee","https://github.com/langchain-ai/langchain/commit/c1e742347f9701aadba8920e4d1f79a636e50b68","https://github.com/langchain-ai/langchain/commit/e711034713259ae448981bc0fd1d7a5671499c31","https://github.com/langchain-ai/langchain","https://huntr.com/bounties/be1ee1cb-2147-4ff4-a57b-b6045271cf27"]},{"id":"GHSA-q84m-rmw3-4382","aliases":["CVE-2024-1455"],"summary":"LangChain's XMLOutputParser vulnerable to XML Entity Expansion","published":"2024-03-26T15:30:50Z","modified":"2024-03-27T18:15:28.288833Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.13rc1","0.0.13rc2","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.12rc1","0.1.13","0.1.14","0.1.15","0.1.15rc1","0.1.15rc2","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32","0.1.33","0.1.33rc1","0.1.34","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0-0.1.35"],"first_patched_version":"0.1.35","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-1455","https://github.com/langchain-ai/langchain/pull/17250","https://github.com/langchain-ai/langchain/pull/19653","https://github.com/langchain-ai/langchain/pull/19660","https://github.com/langchain-ai/langchain/commit/727d5023ce88e18e3074ef620a98137d26ff92a3","https://github.com/langchain-ai/langchain","https://huntr.com/bounties/4353571f-c70d-4bfd-ac08-3a89cecb45b6"]},{"id":"GHSA-h59x-p739-982c","aliases":["CVE-2024-28088","PYSEC-2024-43","PYSEC-2024-45"],"summary":"LangChain directory traversal vulnerability","published":"2024-03-04T00:30:53Z","modified":"2024-12-03T05:59:19.205896Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.13rc1","0.0.13rc2","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.12rc1","0.1.13","0.1.14","0.1.15","0.1.15rc1","0.1.15rc2","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0-0.1.30"],"first_patched_version":"0.0.339","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-28088","https://github.com/langchain-ai/langchain/pull/18600","https://github.com/langchain-ai/langchain/commit/e1924b3e93d513ca950c72f8e80e1c133749fba5","https://github.com/PinkDraconian/PoC-Langchain-RCE/blob/main/README.md","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/blob/f96dd57501131840b713ed7c2e86cbf1ddc2761f/libs/core/langchain_core/utils/loading.py","https://github.com/pypa/advisory-database/tree/main/vulns/langchain-core/PYSEC-2024-45.yaml","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2024-43.yaml"]},{"id":"PYSEC-2024-45","aliases":["CVE-2024-28088","GHSA-h59x-p739-982c","PYSEC-2024-43"],"summary":"","published":"2024-03-04T00:15:00Z","modified":"2026-06-10T17:02:02.424980982Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.13rc1","0.0.13rc2","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.1.0","0.1.1","0.1.10","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0-0.1.11"],"first_patched_version":"0.1.11","reference_urls":["https://github.com/PinkDraconian/PoC-Langchain-RCE/blob/main/README.md","https://github.com/langchain-ai/langchain/blob/f96dd57501131840b713ed7c2e86cbf1ddc2761f/libs/core/langchain_core/utils/loading.py","https://github.com/langchain-ai/langchain/pull/18600","https://github.com/advisories/GHSA-h59x-p739-982c"]}]},{"package":"langchain-openai","ecosystem":"PyPI","category":"agent-framework","description":"LangChain OpenAI integration","homepage":null,"fetched_at":"2026-07-03T05:45:56.711Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"PYSEC-2026-76","latest_published":"2026-04-24T21:16:19.637Z","advisories":[{"id":"PYSEC-2026-76","aliases":["CVE-2026-41488","GHSA-r7w7-9xr2-qq2r"],"summary":"","published":"2026-04-24T21:16:19.637Z","modified":"2026-05-20T09:19:04.187253Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.1rc0","0.0.1rc1","0.0.2","0.0.2.post1","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.8rc1","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14","0.1.15","0.1.16","0.1.17","0.1.19","0.1.2","0.1.20","0.1.21","0.1.21rc1","0.1.21rc2","0.1.22","0.1.23","0.1.24","0.1.25","0.1.3","0.1.3rc1","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.8rc1","0.1.9","0.2.0","0.2.0.dev0","0.2.0.dev1","0.2.0.dev2","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.35","0.3.4","0.3.4rc1","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.3.9rc1","0.4.0.dev0","1.0.0","1.0.0a1","1.0.0a2","1.0.0a3","1.0.0a4","1.0.1","1.0.2","1.0.3","1.1.0","1.1.1","1.1.10","1.1.11","1.1.12","1.1.13","1.1.2","1.1.3","1.1.4","1.1.5","1.1.6","1.1.7","1.1.8","1.1.9","0-1.1.14"],"first_patched_version":"1.1.14","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-r7w7-9xr2-qq2r"]},{"id":"GHSA-r7w7-9xr2-qq2r","aliases":["CVE-2026-41488","PYSEC-2026-76"],"summary":"langchain-openai: Image token counting SSRF protection can be bypassed via DNS rebinding","published":"2026-04-16T23:00:12Z","modified":"2026-06-06T01:15:07.912179267Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.1rc0","0.0.1rc1","0.0.2","0.0.2.post1","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.8rc1","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14","0.1.15","0.1.16","0.1.17","0.1.19","0.1.2","0.1.20","0.1.21","0.1.21rc1","0.1.21rc2","0.1.22","0.1.23","0.1.24","0.1.25","0.1.3","0.1.3rc1","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.8rc1","0.1.9","0.2.0","0.2.0.dev0","0.2.0.dev1","0.2.0.dev2","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.35","0.3.4","0.3.4rc1","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.3.9rc1","0.4.0.dev0","1.0.0","1.0.0a1","1.0.0a2","1.0.0a3","1.0.0a4","1.0.1","1.0.2","1.0.3","1.1.0","1.1.1","1.1.10","1.1.11","1.1.12","1.1.13","1.1.2","1.1.3","1.1.4","1.1.5","1.1.6","1.1.7","1.1.8","1.1.9","0-1.1.14"],"first_patched_version":"1.1.14","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-r7w7-9xr2-qq2r","https://nvd.nist.gov/vuln/detail/CVE-2026-41488","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain-openai/PYSEC-2026-76.yaml"]}]},{"package":"langchain-anthropic","ecosystem":"PyPI","category":"agent-framework","description":"LangChain Anthropic integration","homepage":null,"fetched_at":"2026-07-03T05:45:56.750Z","advisories_count":1,"open_count":1,"withdrawn_count":0,"latest_advisory_id":"GHSA-gr75-jv2w-4656","latest_published":"2026-06-16T15:03:14Z","advisories":[{"id":"GHSA-gr75-jv2w-4656","aliases":[],"summary":"LangChain: Path traversal and sandbox escape in LangChain file-search middleware and loaders","published":"2026-06-16T15:03:14Z","modified":"2026-06-26T17:59:18.379721145Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.1.post1","0.0.2","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14rc1","0.1.14rc2","0.1.15","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.8rc1","0.1.9","0.2.0","0.2.0.dev0","0.2.0.dev1","0.2.1","0.2.2","0.2.3","0.2.4","0.3.0","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.3","0.3.4","0.3.5","0.3.6","0.3.7","0.3.7rc1","0.3.8","0.3.9","1.0.0","1.0.0a1","1.0.0a2","1.0.0a3","1.0.0a4","1.0.0a5","1.0.1","1.0.2","1.0.3","1.0.4","1.1.0","1.2.0","1.3.0","1.3.1","1.3.2","1.3.3","1.3.4","1.3.5","1.4.0","1.4.1","1.4.2","1.4.3","1.4.4","1.4.5","0-1.4.6"],"first_patched_version":"1.3.9","reference_urls":["https://github.com/langchain-ai/langchain/security/advisories/GHSA-gr75-jv2w-4656","https://github.com/langchain-ai/langchain"]}]},{"package":"langchain-community","ecosystem":"PyPI","category":"agent-framework","description":"LangChain community integrations","homepage":null,"fetched_at":"2026-07-03T05:45:56.771Z","advisories_count":9,"open_count":9,"withdrawn_count":0,"latest_advisory_id":"GHSA-pc6w-59fv-rh23","latest_published":"2025-09-04T12:30:42Z","advisories":[{"id":"GHSA-pc6w-59fv-rh23","aliases":["CVE-2025-6984"],"summary":"Langchain Community Vulnerable to XML External Entity (XXE) Attacks","published":"2025-09-04T12:30:42Z","modified":"2026-02-04T03:39:02.097919Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.1rc1","0.0.1rc2","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.2.0","0.2.0rc1","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.2.9","0.3.0","0.3.0.dev1","0.3.0.dev2","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.17rc1","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.3","0.3.4","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0-0.3.27"],"first_patched_version":"0.3.27","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-6984","https://github.com/langchain-ai/langchain-community/commit/e842452108089524e22c3a2ced851c021884556f","https://github.com/langchain-ai/langchain-community","https://github.com/langchain-ai/langchain/blob/d79b5813a0b3b243c612b77013768995e46c4337/libs/langchain/langchain/document_loaders/evernote.py#L1-L23","https://huntr.com/bounties/a6b521cf-258c-41c0-9edb-d8ef976abb2a"]},{"id":"GHSA-h5gc-rm8j-5gpr","aliases":["CVE-2025-2828","PYSEC-2025-70"],"summary":"LangChain Community SSRF vulnerability exists in RequestsToolkit component ","published":"2025-06-23T21:31:56Z","modified":"2025-07-17T22:23:18.384887Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.1rc1","0.0.1rc2","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0-0.0.28"],"first_patched_version":"0.0.28","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-2828","https://github.com/langchain-ai/langchain/commit/e188d4ecb085d4561a0be3c583d26aa9c2c3283f","https://github.com/langchain-ai/langchain-community","https://github.com/pypa/advisory-database/tree/main/vulns/langchain-community/PYSEC-2025-70.yaml","https://huntr.com/bounties/8f771040-7f34-420a-b96b-5b93d4a99afc"]},{"id":"PYSEC-2025-70","aliases":["CVE-2025-2828","GHSA-h5gc-rm8j-5gpr"],"summary":"","published":"2025-06-23T21:15:25Z","modified":"2026-06-10T17:02:02.440779047Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.1rc1","0.0.1rc2","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","v0.1.11","v0.1.10","v0.1.9","v0.1.8","v0.1.7","v0.1.6","v0.1.5","v0.1.4","v0.1.3","v0.1.2","v0.1.1","v0.1.0","v0.0.354","v0.0.353","v0.0.352","v0.0.351","v0.0.350","v0.0.349","v0.0.349-rc.2","v0.0.349-rc.1","v0.0.347","v0.0.348","v0.0.346","v0.0.345","v0.0.344","v0.0.343","v0.0.342","v0.0.341","v0.0.339rc3","v0.0.339rc2","v0.0.340","v0.0.339","v0.0.339rc1","v0.0.339rc0","v0.0.338","v0.0.337","v0.0.336","v0.0.335","v0.0.334","v0.0.333","v0.0.332","v0.0.331rc3","v0.0.331rc2","v0.0.331rc1","v0.0.331rc0","v0.0.331","v0.0.330","v0.0.329","v0.0.327","v0.0.326","v0.0.325","v0.0.324","v0.0.323","v0.0.322","v0.0.321","v0.0.320","v0.0.319","v0.0.318","v0.0.317","v0.0.316","v0.0.315","v0.0.314","v0.0.313","v0.0.312","v0.0.311","v0.0.310","v0.0.309","v0.0.308","v0.0.307","v0.0.306","v0.0.305","v0.0.304","v0.0.303","v0.0.302","v0.0.301","v0.0.298","v0.0.300","v0.0.299","v0.0.297","v0.0.296","v0.0.295","v0.0.294","v0.0.293","v0.0.292","v0.0.291","v0.0.290","v0.0.289","v0.0.288","v0.0.287","v0.0.286","v0.0.285","v0.0.284","v0.0.283","v0.0.281","v0.0.279","v0.0.278","v0.0.277","v0.0.276","v0.0.275","v0.0.274","v0.0.273","v0.0.272","v0.0.271","v0.0.270","v0.0.269","v0.0.268","v0.0.267","v0.0.266","v0.0.265","v0.0.264","v0.0.263","v0.0.262","v0.0.261","v0.0.260","v0.0.259","v0.0.258","v0.0.257","v0.0.256","v0.0.255","v0.0.254","v0.0.253","v0.0.252","v0.0.251","v0.0.250","v0.0.249","v0.0.248","v0.0.247","v0.0.245","v0.0.5","v0.0.244","v0.0.4","v0.0.243","v0.0.242","v0.0.2","v0.0.240","v0.0.1","v0.0.240rc4","v0.0.1rc4","v0.0.240rc1","v0.0.240rc0","v0.0.1rc3","v0.0.1rc2","v0.0.1rc1","v0.0.1rc0","v0.0.239","v0.0.238","v0.0.237","v0.0.236","v0.0.235","v0.0.234","v0.0.233","v0.0.232","v0.0.231","v0.0.230","v0.0.229","v0.0.228","v0.0.227","v0.0.226","v0.0.225","v0.0.224","v0.0.223","v0.0.222","v0.0.221","v0.0.220","v0.0.219","v0.0.218","v0.0.217","v0.0.216","v0.0.215","v0.0.214","v0.0.213","v0.0.212","v0.0.211","v0.0.210","v0.0.209","v0.0.208","v0.0.207","v0.0.206","v0.0.205","v0.0.204","v0.0.202","v0.0.201","v0.0.200","v0.0.199","v0.0.198","v0.0.197","v0.0.196","v0.0.195","v0.0.194","v0.0.193","v0.0.192","v0.0.191","v0.0.190","v0.0.189","v0.0.188","v0.0.187","v0.0.186","v0.0.185","v0.0.184","v0.0.183","v0.0.182","v0.0.181","v0.0.180","v0.0.179","v0.0.178","v0.0.177","v0.0.175","v0.0.174","v0.0.173","v0.0.172","v0.0.171","v0.0.170","v0.0.169","v0.0.168","v0.0.167","v0.0.166","v0.0.165","v0.0.164","v0.0.163","v0.0.161","v0.0.162","v0.0.160","v0.0.159","v0.0.158","v0.0.157","v0.0.156","v0.0.155","v0.0.154","v0.0.153","v0.0.152","v0.0.151","v0.0.150","v0.0.149","v0.0.147","v0.0.146","v0.0.145","v0.0.144","v0.0.143","v0.0.142","v0.0.141","v0.0.140","v0.0.139","v0.0.138","v0.0.137","v0.0.136","v0.0.135","v0.0.134","v0.0.133","v0.0.132","v0.0.131","v0.0.130","v0.0.129","v0.0.128","v0.0.127","v0.0.126","v0.0.125","v0.0.124","v0.0.123","v0.0.122","v0.0.121","v0.0.120","v0.0.119","v0.0.118","v0.0.117","v0.0.116","v0.0.115","v0.0.114","v0.0.113","v0.0.112","v0.0.111","v0.0.110","v0.0.109","v0.0.108","v0.0.107","v0.0.106","v0.0.105","v0.0.104","v0.0.103","v0.0.102","v0.0.101","v0.0.100","v0.0.99","v0.0.98","v0.0.97","v0.0.96","v0.0.95","v0.0.94","v0.0.93","v0.0.92","v0.0.91","v0.0.90","v0.0.89","v0.0.88","v0.0.87","v0.0.86","v0.0.85","v0.0.84","v0.0.83","v0.0.82","v0.0.81","v0.0.80","v0.0.79","v0.0.78","v0.0.77","v0.0.76","v0.0.75","v0.0.74","v0.0.73","v0.0.72","v0.0.71","v0.0.70","v0.0.69","v0.0.68","v0.0.67","v0.0.66","v0.0.65","v0.0.64","0-e188d4ecb085d4561a0be3c583d26aa9c2c3283f","0-0.0.28"],"first_patched_version":"e188d4ecb085d4561a0be3c583d26aa9c2c3283f","reference_urls":["https://huntr.com/bounties/8f771040-7f34-420a-b96b-5b93d4a99afc","https://github.com/langchain-ai/langchain/commit/e188d4ecb085d4561a0be3c583d26aa9c2c3283f","https://huntr.com/bounties/8f771040-7f34-420a-b96b-5b93d4a99afc","https://github.com/advisories/GHSA-h5gc-rm8j-5gpr"]},{"id":"PYSEC-2024-115","aliases":["CVE-2024-8309","GHSA-45pg-36p6-83v9"],"summary":"","published":"2024-11-05T16:04:14Z","modified":"2026-06-10T17:01:58.487495126Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.2.0","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.2.9","0.3.0.dev1","0.3.0.dev2","0.2.0-0.3.0"],"first_patched_version":"c2a3021bb0c5f54649d380b42a0684ca5778c255","reference_urls":["https://huntr.com/bounties/8f4ad910-7fdc-4089-8f0a-b5df5f32e7c5","https://huntr.com/bounties/8f4ad910-7fdc-4089-8f0a-b5df5f32e7c5","https://github.com/langchain-ai/langchain/commit/c2a3021bb0c5f54649d380b42a0684ca5778c255","https://github.com/advisories/GHSA-45pg-36p6-83v9"]},{"id":"GHSA-45pg-36p6-83v9","aliases":["CVE-2024-8309","PYSEC-2024-115"],"summary":"Langchain SQL Injection vulnerability","published":"2024-10-29T15:32:05Z","modified":"2024-11-12T20:01:32.450977Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.2.0","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.15","0.2.16","0.2.17","0.2.18","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.2.9","0.2.0-0.2.19"],"first_patched_version":"0.2.19","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-8309","https://github.com/langchain-ai/langchain/commit/64c317eba05fbac0c6a6fc5aa192bc0d7130972e","https://github.com/langchain-ai/langchain/commit/c2a3021bb0c5f54649d380b42a0684ca5778c255","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2024-115.yaml","https://huntr.com/bounties/8f4ad910-7fdc-4089-8f0a-b5df5f32e7c5"]},{"id":"GHSA-f2jm-rw3h-6phg","aliases":["CVE-2024-5998"],"summary":"LangChain pickle deserialization of untrusted data","published":"2024-09-17T12:30:32Z","modified":"2025-07-30T19:58:58.089036Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.1rc1","0.0.1rc2","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.2.0","0.2.0rc1","0.2.1","0.2.2","0.2.3","0-0.2.4"],"first_patched_version":"0.2.4","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-5998","https://github.com/langchain-ai/langchain/commit/604dfe2d99246b0c09f047c604f0c63eafba31e7","https://github.com/langchain-ai/langchain/commit/77209f315efd13442ec51c67719ba37dfaa44511","https://github.com/langchain-ai/langchain","https://huntr.com/bounties/fa3a2753-57c3-4e08-a176-d7a3ffda28fe"]},{"id":"GHSA-3hjh-jh2h-vrg6","aliases":["CVE-2024-2965","PYSEC-2024-118"],"summary":"Denial of service in langchain-community","published":"2024-06-06T21:30:36Z","modified":"2024-11-04T15:32:21.402118Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.1rc1","0.0.1rc2","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.2.0","0.2.0rc1","0.2.1","0.2.2","0.2.3","0.2.4","0-0.2.5"],"first_patched_version":"0.2.5","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-2965","https://github.com/langchain-ai/langchain/pull/22903","https://github.com/langchain-ai/langchain/commit/73c42306745b0831aa6fe7fe4eeb70d2c2d87a82","https://github.com/langchain-ai/langchain/commit/9a877c7adbd06f90a2518152f65b562bd90487cc","https://github.com/langchain-ai/langchain","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2024-118.yaml","https://huntr.com/bounties/90b0776d-9fa6-4841-aac4-09fde5918cae"]},{"id":"GHSA-q25c-c977-4cmh","aliases":["CVE-2024-3095"],"summary":"Server-Side Request Forgery in langchain-community.retrievers.web_research.WebResearchRetriever","published":"2024-06-06T21:30:36Z","modified":"2024-07-24T17:45:47.691770Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.1rc1","0.0.1rc2","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.2.0","0.2.0rc1","0.2.1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0-0.2.9"],"first_patched_version":"0.2.9","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-3095","https://github.com/langchain-ai/langchain/pull/24451","https://github.com/langchain-ai/langchain/commit/604dfe2d99246b0c09f047c604f0c63eafba31e7","https://github.com/langchain-ai/langchain","https://github.com/langchain-ai/langchain/releases/tag/langchain-community%3D%3D0.2.9","https://huntr.com/bounties/e62d4895-2901-405b-9559-38276b6a5273"]},{"id":"PYSEC-2024-278","aliases":["CVE-2024-2057"],"summary":"","published":"2024-03-01T12:15:48.670Z","modified":"2026-05-21T15:00:15.314136284Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.1rc1","0.0.1rc2","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0-0.0.26"],"first_patched_version":null,"reference_urls":["https://github.com/bayuncao/vul-cve-16/tree/main/PoC.pkl","https://vuldb.com/?ctiid.255372","https://vuldb.com/?id.255372","https://github.com/langchain-ai/langchain/pull/18695","https://github.com/bayuncao/vul-cve-16"]}]},{"package":"langgraph","ecosystem":"PyPI","category":"agent-framework","description":"LangGraph: stateful multi-actor agent runtimes","homepage":null,"fetched_at":"2026-07-03T05:45:56.721Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"GHSA-g48c-2wqr-h844","latest_published":"2026-03-05T20:19:49Z","advisories":[{"id":"GHSA-g48c-2wqr-h844","aliases":["CVE-2026-28277","PYSEC-2026-83"],"summary":"LangGraph checkpoint loading has unsafe msgpack deserialization","published":"2026-03-05T20:19:49Z","modified":"2026-06-06T01:00:08.116125988Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.60","0.0.61","0.0.62","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.8","0.0.9","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14","0.1.15","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.21","0.2.22","0.2.23","0.2.24","0.2.25","0.2.26","0.2.27","0.2.28","0.2.29","0.2.3","0.2.30","0.2.31","0.2.32","0.2.33","0.2.34","0.2.35","0.2.36","0.2.37","0.2.38","0.2.39","0.2.4","0.2.40","0.2.41","0.2.42","0.2.43","0.2.44","0.2.45","0.2.46","0.2.47","0.2.48","0.2.49","0.2.5","0.2.50","0.2.51","0.2.52","0.2.53","0.2.54","0.2.55","0.2.56","0.2.57","0.2.58","0.2.59","0.2.5a0","0.2.6","0.2.60","0.2.61","0.2.62","0.2.63","0.2.64","0.2.65","0.2.66","0.2.67","0.2.68","0.2.69","0.2.7","0.2.70","0.2.71","0.2.72","0.2.73","0.2.74","0.2.75","0.2.76","0.2.7a0","0.2.8","0.2.9","0.3.0","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.4","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.4.0","0.4.1","0.4.10","0.4.2","0.4.3","0.4.4","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.0rc0","0.5.0rc1","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.6.0a1","0.6.0a2","0.6.1","0.6.10","0.6.11","0.6.2","0.6.3","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","1.0.0","1.0.0a1","1.0.0a2","1.0.0a3","1.0.0a4","1.0.0rc1","1.0.1","1.0.10rc1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.0.8","1.0.9","0-1.0.10"],"first_patched_version":"1.0.10","reference_urls":["https://github.com/langchain-ai/langgraph/security/advisories/GHSA-g48c-2wqr-h844","https://nvd.nist.gov/vuln/detail/CVE-2026-28277","https://github.com/langchain-ai/langgraph","https://github.com/pypa/advisory-database/tree/main/vulns/langgraph/PYSEC-2026-83.yaml"]},{"id":"PYSEC-2026-83","aliases":["CVE-2026-28277","GHSA-g48c-2wqr-h844"],"summary":"","published":"2026-03-05T20:16:15.677Z","modified":"2026-05-20T09:19:04.761672Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.17","0.0.18","0.0.19","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.60","0.0.61","0.0.62","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.8","0.0.9","0.1.1","0.1.10","0.1.11","0.1.12","0.1.13","0.1.14","0.1.15","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.21","0.2.22","0.2.23","0.2.24","0.2.25","0.2.26","0.2.27","0.2.28","0.2.29","0.2.3","0.2.30","0.2.31","0.2.32","0.2.33","0.2.34","0.2.35","0.2.36","0.2.37","0.2.38","0.2.39","0.2.4","0.2.40","0.2.41","0.2.42","0.2.43","0.2.44","0.2.45","0.2.46","0.2.47","0.2.48","0.2.49","0.2.5","0.2.50","0.2.51","0.2.52","0.2.53","0.2.54","0.2.55","0.2.56","0.2.57","0.2.58","0.2.59","0.2.5a0","0.2.6","0.2.60","0.2.61","0.2.62","0.2.63","0.2.64","0.2.65","0.2.66","0.2.67","0.2.68","0.2.69","0.2.7","0.2.70","0.2.71","0.2.72","0.2.73","0.2.74","0.2.75","0.2.76","0.2.7a0","0.2.8","0.2.9","0.3.0","0.3.1","0.3.10","0.3.11","0.3.12","0.3.13","0.3.14","0.3.15","0.3.16","0.3.17","0.3.18","0.3.19","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.26","0.3.27","0.3.28","0.3.29","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.4","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.4.0","0.4.1","0.4.10","0.4.2","0.4.3","0.4.4","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.0rc0","0.5.0rc1","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.6.0a1","0.6.0a2","0.6.1","0.6.10","0.6.11","0.6.2","0.6.3","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","1.0.0","1.0.0a1","1.0.0a2","1.0.0a3","1.0.0a4","1.0.0rc1","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.0.8","1.0.9","0-1.0.10rc1"],"first_patched_version":"1.0.10rc1","reference_urls":["https://github.com/langchain-ai/langgraph/security/advisories/GHSA-g48c-2wqr-h844"]}]},{"package":"llama-index","ecosystem":"PyPI","category":"agent-framework","description":"LlamaIndex (formerly GPT Index)","homepage":null,"fetched_at":"2026-07-03T05:45:57.103Z","advisories_count":17,"open_count":17,"withdrawn_count":0,"latest_advisory_id":"PYSEC-2026-394","latest_published":"2026-06-29T11:50:38.482622Z","advisories":[{"id":"PYSEC-2026-394","aliases":["CVE-2025-1793","GHSA-v3c8-3pr6-gr7p"],"summary":"llama_index vulnerable to SQL Injection","published":"2026-06-29T11:50:38.482622Z","modified":"2026-07-01T20:22:56.586862Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.13","0.10.13.post1","0.10.14","0.10.15","0.10.16","0.10.17","0.10.18","0.10.19","0.10.20","0.10.22","0.10.23","0.10.24","0.10.25","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.36","0.10.37","0.10.38","0.10.39","0.10.4","0.10.40","0.10.41","0.10.42","0.10.43","0.10.44","0.10.45","0.10.45.post1","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.51","0.10.52","0.10.53","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.5a1","0.10.6","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.67.post1","0.10.68","0.10.7","0.10.8","0.10.9","0.11.0","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.10","0.12.11","0.12.12","0.12.13","0.12.14","0.12.15","0.12.16","0.12.17","0.12.18","0.12.19","0.12.2","0.12.20","0.12.21","0.12.22","0.12.23","0.12.24","0.12.25","0.12.26","0.12.27","0.12.3","0.12.4","0.12.5","0.12.6","0.12.7","0.12.8","0.12.9","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.12.28"],"first_patched_version":"0.12.28","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-1793","https://github.com/run-llama/llama_index/commit/0008041e8dde8e519621388e5d6f558bde6ef42e","https://github.com/run-llama/llama_index","https://huntr.com/bounties/8cb1555a-9655-4122-b0d6-60059e79183c","https://pypi.org/project/llama-index","https://github.com/advisories/GHSA-v3c8-3pr6-gr7p"]},{"id":"PYSEC-2026-86","aliases":["CVE-2024-58339"],"summary":"","published":"2026-01-12T23:15:51.630Z","modified":"2026-05-20T09:19:05.331978Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.13","0.10.13.post1","0.10.14","0.10.15","0.10.16","0.10.17","0.10.18","0.10.19","0.10.20","0.10.22","0.10.23","0.10.24","0.10.25","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.36","0.10.37","0.10.38","0.10.39","0.10.4","0.10.40","0.10.41","0.10.42","0.10.43","0.10.44","0.10.45","0.10.45.post1","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.51","0.10.52","0.10.53","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.5a1","0.10.6","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.67.post1","0.10.68","0.10.7","0.10.8","0.10.9","0.11.0","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.2","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.12.3"],"first_patched_version":"0.12.3","reference_urls":["https://www.llamaindex.ai/","https://www.vulncheck.com/advisories/llamaindex-vannaqueryengine-sql-execution-allows-resource-exhaustion","https://github.com/run-llama/llama_index","https://huntr.com/bounties/a1d6c30d-fce0-412a-bd22-14e0d4c1fa1f"]},{"id":"PYSEC-2026-85","aliases":["CVE-2024-14021"],"summary":"","published":"2026-01-12T23:15:51.413Z","modified":"2026-05-20T09:19:05.259645Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.13","0.10.13.post1","0.10.14","0.10.15","0.10.16","0.10.17","0.10.18","0.10.19","0.10.20","0.10.22","0.10.23","0.10.24","0.10.25","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.36","0.10.37","0.10.38","0.10.39","0.10.4","0.10.40","0.10.41","0.10.42","0.10.43","0.10.44","0.10.45","0.10.45.post1","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.51","0.10.52","0.10.53","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.5a1","0.10.6","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.67.post1","0.10.68","0.10.7","0.10.8","0.10.9","0.11.0","0.11.1","0.11.2","0.11.3","0.11.4","0.11.5","0.11.6","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.11.7"],"first_patched_version":"0.11.7","reference_urls":["https://www.llamaindex.ai/","https://www.vulncheck.com/advisories/llamaindex-bgem3index-unsafe-deserialization","https://github.com/run-llama/llama_index","https://huntr.com/bounties/ab4ceeb4-aa85-4d1c-aaca-4eda1b71fc12"]},{"id":"GHSA-rg9h-vx28-xxp5","aliases":["CVE-2025-7707"],"summary":"llama-index has Insecure Temporary File","published":"2025-10-13T18:31:13Z","modified":"2025-10-13T21:27:23.708030Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.13","0.10.13.post1","0.10.14","0.10.15","0.10.16","0.10.17","0.10.18","0.10.19","0.10.20","0.10.22","0.10.23","0.10.24","0.10.25","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.36","0.10.37","0.10.38","0.10.39","0.10.4","0.10.40","0.10.41","0.10.42","0.10.43","0.10.44","0.10.45","0.10.45.post1","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.51","0.10.52","0.10.53","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.5a1","0.10.6","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.67.post1","0.10.68","0.10.7","0.10.8","0.10.9","0.11.0","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.10","0.12.11","0.12.12","0.12.13","0.12.14","0.12.15","0.12.16","0.12.17","0.12.18","0.12.19","0.12.2","0.12.20","0.12.21","0.12.22","0.12.23","0.12.24","0.12.25","0.12.26","0.12.27","0.12.28","0.12.29","0.12.3","0.12.30","0.12.31","0.12.32","0.12.33","0.12.34","0.12.35","0.12.36","0.12.37","0.12.38","0.12.39","0.12.4","0.12.40","0.12.41","0.12.42","0.12.43","0.12.44","0.12.45","0.12.46","0.12.47","0.12.48","0.12.49","0.12.5","0.12.50","0.12.51","0.12.52","0.12.6","0.12.7","0.12.8","0.12.9","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.13.0"],"first_patched_version":"0.13.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-7707","https://github.com/run-llama/llama_index/commit/98816394d57c7f53f847ed7b60725e69d0e7aae4","https://github.com/run-llama/llama_index","https://huntr.com/bounties/3fe2c8ab-6727-4aef-a0ef-4d2818e48803"]},{"id":"GHSA-5hq9-5r78-2gjh","aliases":["CVE-2025-6211"],"summary":"LlamaIndex vulnerable to data loss through hash collisions in its DocugamiReader class ","published":"2025-07-10T15:31:27Z","modified":"2026-02-04T02:52:59.668703Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.13","0.10.13.post1","0.10.14","0.10.15","0.10.16","0.10.17","0.10.18","0.10.19","0.10.20","0.10.22","0.10.23","0.10.24","0.10.25","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.36","0.10.37","0.10.38","0.10.39","0.10.4","0.10.40","0.10.41","0.10.42","0.10.43","0.10.44","0.10.45","0.10.45.post1","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.51","0.10.52","0.10.53","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.5a1","0.10.6","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.67.post1","0.10.68","0.10.7","0.10.8","0.10.9","0.11.0","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.10","0.12.11","0.12.12","0.12.13","0.12.14","0.12.15","0.12.16","0.12.17","0.12.18","0.12.19","0.12.2","0.12.20","0.12.21","0.12.22","0.12.23","0.12.24","0.12.25","0.12.26","0.12.27","0.12.28","0.12.29","0.12.3","0.12.30","0.12.31","0.12.32","0.12.33","0.12.34","0.12.35","0.12.36","0.12.37","0.12.38","0.12.39","0.12.4","0.12.40","0.12.5","0.12.6","0.12.7","0.12.8","0.12.9","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.12.41"],"first_patched_version":"0.12.41","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-6211","https://github.com/run-llama/llama_index/commit/29b2e07e64ed7d302b1cc058185560b28eaa1352","https://github.com/run-llama/llama_index","https://huntr.com/bounties/1a48a011-a3c5-4979-9ffc-9652280bc389"]},{"id":"PYSEC-2025-65","aliases":["CVE-2025-6209","GHSA-2rhq-96q8-4vjq"],"summary":"","published":"2025-07-07T13:15:28Z","modified":"2025-07-08T18:44:32.849537Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.12.27","0.12.28","0.12.29","0.12.30","0.12.31","0.12.32","0.12.33","0.12.34","0.12.35","0.12.36","0.12.37","0.12.38","0.12.39","0.12.40","0-cdeaab91a204d1c3527f177dac37390327aef274","0.12.27-0.12.41"],"first_patched_version":"cdeaab91a204d1c3527f177dac37390327aef274","reference_urls":["https://github.com/run-llama/llama_index/commit/cdeaab91a204d1c3527f177dac37390327aef274","https://huntr.com/bounties/e89d14f8-bfe8-4c9a-bb2a-656c01cc9a68"]},{"id":"GHSA-v3c8-3pr6-gr7p","aliases":["CVE-2025-1793","PYSEC-2026-394"],"summary":"llama_index vulnerable to SQL Injection","published":"2025-06-05T06:30:26Z","modified":"2026-06-29T12:26:27.238771960Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.13","0.10.13.post1","0.10.14","0.10.15","0.10.16","0.10.17","0.10.18","0.10.19","0.10.20","0.10.22","0.10.23","0.10.24","0.10.25","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.36","0.10.37","0.10.38","0.10.39","0.10.4","0.10.40","0.10.41","0.10.42","0.10.43","0.10.44","0.10.45","0.10.45.post1","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.51","0.10.52","0.10.53","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.5a1","0.10.6","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.67.post1","0.10.68","0.10.7","0.10.8","0.10.9","0.11.0","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.10","0.12.11","0.12.12","0.12.13","0.12.14","0.12.15","0.12.16","0.12.17","0.12.18","0.12.19","0.12.2","0.12.20","0.12.21","0.12.22","0.12.23","0.12.24","0.12.25","0.12.26","0.12.27","0.12.3","0.12.4","0.12.5","0.12.6","0.12.7","0.12.8","0.12.9","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.12.28"],"first_patched_version":"0.12.28","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-1793","https://github.com/run-llama/llama_index/commit/0008041e8dde8e519621388e5d6f558bde6ef42e","https://github.com/run-llama/llama_index","https://huntr.com/bounties/8cb1555a-9655-4122-b0d6-60059e79183c"]},{"id":"GHSA-7c85-87cp-mr6g","aliases":["CVE-2025-1752"],"summary":"LlamaIndex Vulnerable to Denial of Service (DoS)","published":"2025-05-10T15:30:28Z","modified":"2025-10-16T08:05:41.149134Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.12.15","0.12.16","0.12.17","0.12.18","0.12.19","0.12.20","0.12.15-0.12.21"],"first_patched_version":"0.12.21","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-1752","https://github.com/run-llama/llama_index/commit/3c65db2947271de3bd1927dc66a044da385de4da","https://github.com/run-llama/llama_index","https://huntr.com/bounties/cd7b9082-7d75-42e4-84f5-dbee23cbc467"]},{"id":"GHSA-jmgm-gx32-vp4w","aliases":["CVE-2024-12911"],"summary":"LlamaIndex vulnerable to Creation of Temporary File in Directory with Insecure Permissions","published":"2025-03-20T12:32:44Z","modified":"2025-10-15T17:45:25.452221Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.13","0.10.13.post1","0.10.14","0.10.15","0.10.16","0.10.17","0.10.18","0.10.19","0.10.20","0.10.22","0.10.23","0.10.24","0.10.25","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.36","0.10.37","0.10.38","0.10.39","0.10.4","0.10.40","0.10.41","0.10.42","0.10.43","0.10.44","0.10.45","0.10.45.post1","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.51","0.10.52","0.10.53","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.5a1","0.10.6","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.67.post1","0.10.68","0.10.7","0.10.8","0.10.9","0.11.0","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.2","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.12.3"],"first_patched_version":"0.12.3","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-12911","https://github.com/run-llama/llama_index/commit/bf282074e20e7dafd5e2066137dcd4cd17c3fb9e","https://github.com/run-llama/llama_index","https://huntr.com/bounties/095f9e67-311d-494c-99c5-5e61a0adb8f3"]},{"id":"GHSA-jvpf-xf32-2w4q","aliases":["CVE-2024-12910","PYSEC-2025-11"],"summary":"LlamaIndex Uncontrolled Resource Consumption vulnerability","published":"2025-03-20T12:32:44Z","modified":"2025-10-15T16:52:16.497676Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.13","0.10.13.post1","0.10.14","0.10.15","0.10.16","0.10.17","0.10.18","0.10.19","0.10.20","0.10.22","0.10.23","0.10.24","0.10.25","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.36","0.10.37","0.10.38","0.10.39","0.10.4","0.10.40","0.10.41","0.10.42","0.10.43","0.10.44","0.10.45","0.10.45.post1","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.51","0.10.52","0.10.53","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.5a1","0.10.6","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.67.post1","0.10.68","0.10.7","0.10.8","0.10.9","0.11.0","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.2","0.12.3","0.12.4","0.12.5","0.12.6","0.12.7","0.12.8","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.12.9"],"first_patched_version":"0.12.9","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-12910","https://github.com/run-llama/llama_index/commit/159ce485a1168100bb219dc1b93133f1121579d9","https://github.com/pypa/advisory-database/tree/main/vulns/llama-index/PYSEC-2025-11.yaml","https://github.com/run-llama/llama_index","https://huntr.com/bounties/27883f22-35ff-49df-aaa5-05031c7d6ad8"]},{"id":"PYSEC-2025-11","aliases":["CVE-2024-12910","GHSA-jvpf-xf32-2w4q"],"summary":"","published":"2025-03-20T10:15:31Z","modified":"2026-06-10T17:00:25.691259238Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.13","0.10.13.post1","0.10.14","0.10.15","0.10.16","0.10.17","0.10.18","0.10.19","0.10.20","0.10.22","0.10.23","0.10.24","0.10.25","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.36","0.10.37","0.10.38","0.10.39","0.10.4","0.10.40","0.10.41","0.10.42","0.10.43","0.10.44","0.10.45","0.10.45.post1","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.51","0.10.52","0.10.53","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.5a1","0.10.6","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.67.post1","0.10.68","0.10.7","0.10.8","0.10.9","0.11.0","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.2","0.12.3","0.12.4","0.12.5","0.12.6","0.12.7","0.12.8","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","v0.12.8","v0.12.7","v0.12.6","v0.12.5","v0.12.4","v0.12.3","v0.12.2","v0.12.1","v0.12.0.post1","v0.12.0","v0.11.23.post3","v0.11.23.post2","v0.11.23.post1","v0.11.23","v0.11.22","v0.11.21","v0.11.20","v0.11.19","v0.11.18","v0.11.17.post1","v0.11.17","v0.11.16","v0.11.15","v0.11.14","v0.11.13","v0.11.12","v0.11.11","v0.11.10","v0.11.9","v0.11.8","v0.11.7","v0.11.6.post1","v0.11.6","v0.11.5","v0.11.4","v0.11.3","v0.11.2","v0.11.1","v0.11.0","v0.10.68","v0.10.67.post1","v0.10.67","v0.10.66","v0.10.63","v0.10.62","v0.10.61","v0.10.60","v0.10.59","v0.10.58","v0.10.57","v0.10.55","v0.10.54","v0.10.53","v0.10.52","v0.10.51","v0.10.50","v0.10.49","v0.10.48.post1","v0.10.48","v0.10.47","v0.10.44","v0.10.43","v0.10.42","v0.10.41","v0.10.40","v0.10.38","v0.10.37","v0.10.35","v0.10.34","v0.10.32","v0.10.31","v0.10.30","v0.10.29","v0.10.28.post1","v0.10.28","v0.10.27","v0.10.26","v0.10.25","v0.10.24","v0.10.23","v0.10.22","v0.10.20","v0.10.19","v0.10.18","v0.10.17","v0.10.16","v0.10.15","v0.10.14","v0.10.13.post1","v0.10.13","v0.10.12","v0.10.11","v0.10.10","v0.10.9","v0.10.8","v0.10.7","v0.10.6","v0.10.5","v0.10.3","v0.10.1","v0.10.0","v0.9.48","v0.9.46","v0.9.45.post1","v0.9.42.post2","v0.9.42.post1","v0.9.42","v0.9.41","v0.9.40","v0.9.39","v0.9.38","v0.9.37","v0.9.36","v0.9.31","v0.9.29","v0.9.28.post2","v0.9.28.post1","v0.9.28","v0.9.26","v0.9.25","v0.9.22","v0.9.17.dev1","v0.9.16.post1","v0.9.15.post2","v0.9.15.post1","v0.9.15","v0.9.14.post3","v0.9.12","v0.9.11.post1","v0.9.10","v0.9.9","v0.9.8.post1","v0.9.8","v0.9.7","v0.9.6.post2","v0.9.6.post1","v0.9.6","v0.9.5","v0.9.3.post1","v0.9.3","v0.9.1","v0.9.0","v0.8.69.post2","v0.8.69.post1","v0.8.69","v0.8.66","v0.8.63.post1","v0.8.53.post1","v0.8.45.post1","v0.8.45","v0.8.43.post1","v0.8.43","v0.8.38","v0.8.29.post1","v0.8.25","v0.8.11.post3","v0.8.11.post2","v0.8.11.post1","v0.8.10","v0.8.7","v0.8.5.post1","v0.8.4","v0.8.3","v0.8.2.post1","v0.8.2","v0.8.1.post1","v0.7.24.post1","v0.7.20","v0.7.19","v0.7.14","v0.7.13","v0.7.12","v0.7.11.post1","v0.7.11","v0.7.10","v0.7.9","v0.6.21","v0.6.3","v0.6.0","v0.6.0.alpha1","v0.4.2","v0.4.1","v0.4.0","v0.3.1","0-159ce485a1168100bb219dc1b93133f1121579d9","0-0.12.9"],"first_patched_version":"159ce485a1168100bb219dc1b93133f1121579d9","reference_urls":["https://huntr.com/bounties/27883f22-35ff-49df-aaa5-05031c7d6ad8","https://github.com/run-llama/llama_index/commit/159ce485a1168100bb219dc1b93133f1121579d9","https://github.com/advisories/GHSA-jvpf-xf32-2w4q"]},{"id":"PYSEC-2024-192","aliases":["CVE-2024-45201","GHSA-fxc2-8m62-m85x","PYSEC-2026-395"],"summary":"","published":"2024-08-22T20:15:10Z","modified":"2026-06-29T12:26:26.008969714Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.13","0.10.13.post1","0.10.14","0.10.15","0.10.16","0.10.17","0.10.18","0.10.19","0.10.20","0.10.22","0.10.23","0.10.24","0.10.25","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.36","0.10.37","0.10.4","0.10.5","0.10.5a1","0.10.6","0.10.7","0.10.8","0.10.9","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.10.38"],"first_patched_version":"0.10.38","reference_urls":["https://github.com/run-llama/llama_index/compare/v0.10.37...v0.10.38","https://github.com/run-llama/llama_index/pull/13523"]},{"id":"GHSA-pw38-xv9x-h8ch","aliases":["CVE-2024-4181"],"summary":"RunGptLLM class in LlamaIndex has a command injection","published":"2024-05-16T09:33:08Z","modified":"2024-05-19T02:24:47.649224Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.12","0.10.3","0.10.4","0.10.5","0.10.5a1","0.10.6","0.10.7","0.10.8","0.10.9","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.36","0.9.37","0.9.37.post1","0.9.38","0.9.39","0.9.4","0.9.40","0.9.41","0.9.42","0.9.42.post1","0.9.42.post2","0.9.43","0.9.44","0.9.45","0.9.45.post1","0.9.46","0.9.47","0.9.48","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.10.13"],"first_patched_version":"0.10.13","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-4181","https://github.com/run-llama/llama_index/commit/d73715eaf0642705583e7897c78b9c8dd2d3a7ba","https://github.com/run-llama/llama_index","https://huntr.com/bounties/1a204520-598a-434e-b13d-0d34f2a5ddc1"]},{"id":"GHSA-2jxw-4hm4-6w87","aliases":["CVE-2024-23751","PYSEC-2024-12"],"summary":"SQL injection in llama-index","published":"2024-01-22T03:30:26Z","modified":"2024-02-16T08:23:56.726836Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.35","0.9.4","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.9.35"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-23751","https://github.com/run-llama/llama_index/issues/9957","https://github.com/pypa/advisory-database/tree/main/vulns/llama-index/PYSEC-2024-12.yaml","https://github.com/run-llama/llama_index"]},{"id":"PYSEC-2024-12","aliases":["CVE-2024-23751","GHSA-2jxw-4hm4-6w87"],"summary":"","published":"2024-01-22T01:15:00Z","modified":"2026-06-10T17:02:02.879353549Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.14","0.9.14.post1","0.9.14.post2","0.9.14.post3","0.9.15","0.9.15.post1","0.9.15.post2","0.9.16","0.9.16.dev1","0.9.16.dev2","0.9.16.post1","0.9.17","0.9.17.dev1","0.9.18","0.9.19","0.9.2","0.9.20","0.9.21","0.9.22","0.9.23","0.9.24","0.9.25","0.9.25.post1","0.9.25a1","0.9.25a2","0.9.26","0.9.27","0.9.28","0.9.28.post1","0.9.28.post2","0.9.29","0.9.3","0.9.3.post1","0.9.30","0.9.31","0.9.32","0.9.33","0.9.33a2","0.9.33a3","0.9.33a4","0.9.33a5","0.9.33a6","0.9.34","0.9.4","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.9.35"],"first_patched_version":"0.9.35","reference_urls":["https://github.com/run-llama/llama_index/issues/9957","https://github.com/advisories/GHSA-2jxw-4hm4-6w87"]},{"id":"GHSA-2xxc-73fv-36f7","aliases":["CVE-2023-39662","PYSEC-2023-148"],"summary":"llama-index vulnerable to arbitrary code execution","published":"2023-08-15T18:31:32Z","modified":"2024-09-30T16:44:07.061189Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24.post1","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.1.post1","0.8.10","0.8.10.post1","0.8.11","0.8.11.post1","0.8.11.post2","0.8.11.post3","0.8.12","0.8.13","0.8.14","0.8.15","0.8.16","0.8.17","0.8.18","0.8.19","0.8.2","0.8.2.post1","0.8.20","0.8.21","0.8.22","0.8.23","0.8.23.post1","0.8.24","0.8.24.post1","0.8.25","0.8.26","0.8.26.post1","0.8.27","0.8.28","0.8.28a1","0.8.29","0.8.29.post1","0.8.3","0.8.30","0.8.31","0.8.32","0.8.33","0.8.34","0.8.35","0.8.36","0.8.37","0.8.38","0.8.39","0.8.39.post2","0.8.4","0.8.40","0.8.41","0.8.42","0.8.43","0.8.43.post1","0.8.44","0.8.45","0.8.45.post1","0.8.46","0.8.47","0.8.48","0.8.49","0.8.5","0.8.5.post1","0.8.5.post2","0.8.50","0.8.51","0.8.51.post1","0.8.52","0.8.53","0.8.53.post3","0.8.54","0.8.55","0.8.56","0.8.57","0.8.58","0.8.59","0.8.6","0.8.61","0.8.62","0.8.63.post1","0.8.63.post2","0.8.64","0.8.64.post1","0.8.65","0.8.66","0.8.67","0.8.68","0.8.69","0.8.69.post1","0.8.69.post2","0.8.7","0.8.8","0.8.9","0.9.0","0.9.0.post1","0.9.0a1","0.9.0a2","0.9.0a3","0.9.1","0.9.10","0.9.10a1","0.9.10a2","0.9.11","0.9.11.post1","0.9.12","0.9.12a1","0.9.12a2","0.9.12a3","0.9.12a4","0.9.12a5","0.9.12a6","0.9.13","0.9.2","0.9.3","0.9.3.post1","0.9.4","0.9.5","0.9.6","0.9.6.post1","0.9.6.post2","0.9.7","0.9.8","0.9.8.post1","0.9.9","0-0.9.14"],"first_patched_version":"0.9.14","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-39662","https://github.com/jerryjliu/llama_index/issues/7054","https://github.com/run-llama/llama_index/commit/9f3e50a803f519af9ab62e63d413441c43001d81","https://github.com/run-llama/llama_index/commit/aa6726706476e0f957a8d57a5ca89e519e93bad7","https://github.com/jerryjliu/llama_index","https://github.com/pypa/advisory-database/tree/main/vulns/llama-index/PYSEC-2023-148.yaml"]},{"id":"PYSEC-2023-148","aliases":["CVE-2023-39662","GHSA-2xxc-73fv-36f7"],"summary":"","published":"2023-08-15T17:15:00Z","modified":"2026-06-10T17:01:55.576585358Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.22.post1","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.33","0.4.34","0.4.35","0.4.35.post1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.4","0.4.4.post1","0.4.4.post2","0.4.40","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.10","0.5.11","0.5.12","0.5.13","0.5.13.post1","0.5.15","0.5.16","0.5.17","0.5.17.post1","0.5.18","0.5.19","0.5.2","0.5.20","0.5.21","0.5.22","0.5.23","0.5.23.post1","0.5.25","0.5.26","0.5.27","0.5.3","0.5.4","0.5.5","0.5.6","0.5.7","0.5.8","0.5.9","0.6.0","0.6.0a1","0.6.0a2","0.6.0a3","0.6.0a4","0.6.0a5","0.6.0a6","0.6.0a7","0.6.1","0.6.10","0.6.10.post1","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.16","0.6.16.post1","0.6.17","0.6.18","0.6.19","0.6.2","0.6.20","0.6.21.post1","0.6.22","0.6.23","0.6.24","0.6.25","0.6.25.post1","0.6.26","0.6.27","0.6.28","0.6.29","0.6.30","0.6.31","0.6.32","0.6.33","0.6.34","0.6.34.post1","0.6.35","0.6.36","0.6.37","0.6.38","0.6.38.post1","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.10.post1","0.7.11","0.7.11.post1","0.7.12","0.7.13","0.7.2","0.7.3","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0-0.7.14"],"first_patched_version":"0.7.14","reference_urls":["https://github.com/jerryjliu/llama_index/issues/7054","https://github.com/jerryjliu/llama_index/issues/7054","https://github.com/advisories/GHSA-2xxc-73fv-36f7"]}]},{"package":"llama-index-core","ecosystem":"PyPI","category":"agent-framework","description":"LlamaIndex core","homepage":null,"fetched_at":"2026-07-03T05:45:56.834Z","advisories_count":13,"open_count":13,"withdrawn_count":0,"latest_advisory_id":"PYSEC-2026-395","latest_published":"2026-06-29T11:50:41.215936Z","advisories":[{"id":"PYSEC-2026-395","aliases":["CVE-2024-45201","GHSA-fxc2-8m62-m85x","PYSEC-2024-192"],"summary":"LlamaIndex includes an exec call for `import {cls_name}`","published":"2026-06-29T11:50:41.215936Z","modified":"2026-07-01T20:22:56.474948Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24","0.10.24.post1","0.10.24a1","0.10.25","0.10.25.post1","0.10.25.post2","0.10.25.post3","0.10.25a1","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.35.post1","0.10.36","0.10.37","0.10.37.post1","0.10.5","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.10.38"],"first_patched_version":"0.10.38","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-45201","https://github.com/run-llama/llama_index/pull/13523","https://github.com/run-llama/llama_index/commit/bd827c30484fa085ec769fa55dc7f2add8006ac8","https://github.com/pypa/advisory-database/tree/main/vulns/llama-index/PYSEC-2024-192.yaml","https://github.com/run-llama/llama_index","https://github.com/run-llama/llama_index/compare/v0.10.37...v0.10.38","https://pypi.org/project/llama-index-core","https://github.com/advisories/GHSA-fxc2-8m62-m85x"]},{"id":"PYSEC-2026-396","aliases":["CVE-2024-3271","GHSA-r6gp-rff2-p3hf"],"summary":"llama-index-core Command Injection vulnerability","published":"2026-06-29T11:50:39.698454Z","modified":"2026-07-01T20:22:56.484978Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24a1","0.10.3","0.10.5","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.10.24"],"first_patched_version":"0.10.24","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-3271","https://github.com/run-llama/llama_index/commit/2c92e88838a5f481d50840240b1dd3180066c6f5","https://github.com/run-llama/llama_index/commit/5fbcb5a8b9f20f81b791c7fc8849e352613ab475","https://github.com/run-llama/llama_index","https://huntr.com/bounties/9b32490e-7cf9-470e-8d49-ba083ae7a279","https://pypi.org/project/llama-index-core","https://github.com/advisories/GHSA-r6gp-rff2-p3hf"]},{"id":"PYSEC-2026-397","aliases":["CVE-2024-3098","GHSA-wvpx-g427-q9wc"],"summary":"llama-index-core Prompt Injection vulnerability leading to Arbitrary Code Execution","published":"2026-06-29T11:50:39.328327Z","modified":"2026-07-01T20:22:56.494655Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24a1","0.10.3","0.10.5","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.10.24"],"first_patched_version":"0.10.24","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-3098","https://github.com/run-llama/llama_index/commit/2c92e88838a5f481d50840240b1dd3180066c6f5","https://github.com/run-llama/llama_index/commit/5fbcb5a8b9f20f81b791c7fc8849e352613ab475","https://github.com/run-llama/llama_index","https://huntr.com/bounties/1bce0d61-ad03-4b22-bc32-8f99f92974e7","https://pypi.org/project/llama-index-core","https://github.com/advisories/GHSA-wvpx-g427-q9wc"]},{"id":"GHSA-488g-hw5f-x29p","aliases":["CVE-2025-6208"],"summary":"llama-index-core vulnerable to Uncontrolled Resource Consumption","published":"2026-02-02T12:31:14Z","modified":"2026-02-03T17:51:21.906793Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24","0.10.24.post1","0.10.24a1","0.10.25","0.10.25.post1","0.10.25.post2","0.10.25.post3","0.10.25a1","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.35.post1","0.10.36","0.10.37","0.10.37.post1","0.10.38","0.10.38.post1","0.10.38.post2","0.10.39","0.10.39.post1","0.10.40","0.10.41","0.10.42","0.10.43","0.10.43.post1","0.10.44","0.10.45","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.50.post1","0.10.51","0.10.52","0.10.52.post1","0.10.52.post2","0.10.53","0.10.53.post1","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.59a1","0.10.59a2","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.60","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.66","0.10.67","0.10.68","0.10.68.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.11.0","0.11.0.post1","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.13.post1","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.10","0.12.10.post1","0.12.11","0.12.12","0.12.13","0.12.14","0.12.15","0.12.16","0.12.16.post1","0.12.17","0.12.18","0.12.19","0.12.2","0.12.20","0.12.21","0.12.22","0.12.23","0.12.23.post1","0.12.23.post2","0.12.24","0.12.24.post1","0.12.25","0.12.26","0.12.27","0.12.27a1","0.12.27a2","0.12.27a3","0.12.28","0.12.29","0.12.3","0.12.30","0.12.31","0.12.32","0.12.33","0.12.33.post1","0.12.34","0.12.34.post1","0.12.34a1","0.12.34a2","0.12.34a3","0.12.34a4","0.12.34a5","0.12.35","0.12.36","0.12.37","0.12.38","0.12.39","0.12.4","0.12.40","0.12.5","0.12.6","0.12.7","0.12.8","0.12.9","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.12.41"],"first_patched_version":"0.12.41","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-6208","https://github.com/run-llama/llama_index/commit/53614e2f7913c0e86b58add9470b3c900b6c60b2","https://github.com/run-llama/llama_index","https://huntr.com/bounties/7d722bb6-6567-4608-8b23-f95048d7605a"]},{"id":"GHSA-cr7q-2w66-hjcm","aliases":["CVE-2025-7647"],"summary":"llama-index-core insecurely handles temporary files","published":"2025-09-27T18:30:49Z","modified":"2026-02-04T03:50:57.784334Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24","0.10.24.post1","0.10.24a1","0.10.25","0.10.25.post1","0.10.25.post2","0.10.25.post3","0.10.25a1","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.35.post1","0.10.36","0.10.37","0.10.37.post1","0.10.38","0.10.38.post1","0.10.38.post2","0.10.39","0.10.39.post1","0.10.40","0.10.41","0.10.42","0.10.43","0.10.43.post1","0.10.44","0.10.45","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.50.post1","0.10.51","0.10.52","0.10.52.post1","0.10.52.post2","0.10.53","0.10.53.post1","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.59a1","0.10.59a2","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.60","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.66","0.10.67","0.10.68","0.10.68.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.11.0","0.11.0.post1","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.13.post1","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.10","0.12.10.post1","0.12.11","0.12.12","0.12.13","0.12.14","0.12.15","0.12.16","0.12.16.post1","0.12.17","0.12.18","0.12.19","0.12.2","0.12.20","0.12.21","0.12.22","0.12.23","0.12.23.post1","0.12.23.post2","0.12.24","0.12.24.post1","0.12.25","0.12.26","0.12.27","0.12.27a1","0.12.27a2","0.12.27a3","0.12.28","0.12.29","0.12.3","0.12.30","0.12.31","0.12.32","0.12.33","0.12.33.post1","0.12.34","0.12.34.post1","0.12.34a1","0.12.34a2","0.12.34a3","0.12.34a4","0.12.34a5","0.12.35","0.12.36","0.12.37","0.12.38","0.12.39","0.12.4","0.12.40","0.12.41","0.12.42","0.12.43","0.12.44","0.12.45","0.12.46","0.12.47","0.12.48","0.12.49","0.12.5","0.12.50","0.12.51","0.12.52","0.12.52.post1","0.12.6","0.12.7","0.12.8","0.12.9","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.13.0"],"first_patched_version":"0.13.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-7647","https://github.com/run-llama/llama_index/commit/98816394d57c7f53f847ed7b60725e69d0e7aae4","https://github.com/run-llama/llama_index","https://huntr.com/bounties/a2baa08f-98bf-47a8-ac83-06f7411afd9e"]},{"id":"GHSA-7753-xrfw-ch36","aliases":["CVE-2025-5302"],"summary":"LlamaIndex affected by a Denial of Service (DOS) in JSONReader","published":"2025-08-26T00:31:13Z","modified":"2025-08-26T18:12:26.385235Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24","0.10.24.post1","0.10.24a1","0.10.25","0.10.25.post1","0.10.25.post2","0.10.25.post3","0.10.25a1","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.35.post1","0.10.36","0.10.37","0.10.37.post1","0.10.38","0.10.38.post1","0.10.38.post2","0.10.39","0.10.39.post1","0.10.40","0.10.41","0.10.42","0.10.43","0.10.43.post1","0.10.44","0.10.45","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.50.post1","0.10.51","0.10.52","0.10.52.post1","0.10.52.post2","0.10.53","0.10.53.post1","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.59a1","0.10.59a2","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.60","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.66","0.10.67","0.10.68","0.10.68.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.11.0","0.11.0.post1","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.13.post1","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.10","0.12.10.post1","0.12.11","0.12.12","0.12.13","0.12.14","0.12.15","0.12.16","0.12.16.post1","0.12.17","0.12.18","0.12.19","0.12.2","0.12.20","0.12.21","0.12.22","0.12.23","0.12.23.post1","0.12.23.post2","0.12.24","0.12.24.post1","0.12.25","0.12.26","0.12.27","0.12.27a1","0.12.27a2","0.12.27a3","0.12.28","0.12.29","0.12.3","0.12.30","0.12.31","0.12.32","0.12.33","0.12.33.post1","0.12.34","0.12.34.post1","0.12.34a1","0.12.34a2","0.12.34a3","0.12.34a4","0.12.34a5","0.12.35","0.12.36","0.12.37","0.12.4","0.12.5","0.12.6","0.12.7","0.12.8","0.12.9","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.12.38"],"first_patched_version":"0.12.38","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-5302","https://github.com/run-llama/llama_index/commit/c032843a02ce38fd8f284b2aa5a37fd1c17ae635","https://github.com/run-llama/llama_index","https://huntr.com/bounties/70041b81-de9e-4046-8c0e-6ccd557048a6"]},{"id":"GHSA-2rhq-96q8-4vjq","aliases":["CVE-2025-6209","PYSEC-2025-65"],"summary":"LlamaIndex vulnerable to Path Traversal attack through its encode_image function","published":"2025-07-07T15:30:37Z","modified":"2025-07-08T18:56:25.496874Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.11.23","0.12.0","0.12.1","0.12.10","0.12.10.post1","0.12.11","0.12.12","0.12.13","0.12.14","0.12.15","0.12.16","0.12.16.post1","0.12.17","0.12.18","0.12.19","0.12.2","0.12.20","0.12.21","0.12.22","0.12.23","0.12.23.post1","0.12.23.post2","0.12.24","0.12.24.post1","0.12.25","0.12.26","0.12.27","0.12.27a1","0.12.27a2","0.12.27a3","0.12.28","0.12.29","0.12.3","0.12.30","0.12.31","0.12.32","0.12.33","0.12.33.post1","0.12.34","0.12.34.post1","0.12.34a1","0.12.34a2","0.12.34a3","0.12.34a4","0.12.34a5","0.12.35","0.12.36","0.12.37","0.12.38","0.12.39","0.12.4","0.12.40","0.12.5","0.12.6","0.12.7","0.12.8","0.12.9","0.11.23-0.12.41"],"first_patched_version":"0.12.41","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-6209","https://github.com/run-llama/llama_index/commit/cdeaab91a204d1c3527f177dac37390327aef274","https://github.com/pypa/advisory-database/tree/main/vulns/llama-index/PYSEC-2025-65.yaml","https://github.com/run-llama/llama_index","https://huntr.com/bounties/e89d14f8-bfe8-4c9a-bb2a-656c01cc9a68"]},{"id":"GHSA-3wxx-q3gv-pvvv","aliases":["CVE-2025-5472"],"summary":"LlamaIndex vulnerable to DoS attack through uncontrolled recursive JSON parsing","published":"2025-07-07T12:30:23Z","modified":"2025-07-08T18:44:46.570064Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24","0.10.24.post1","0.10.24a1","0.10.25","0.10.25.post1","0.10.25.post2","0.10.25.post3","0.10.25a1","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.35.post1","0.10.36","0.10.37","0.10.37.post1","0.10.38","0.10.38.post1","0.10.38.post2","0.10.39","0.10.39.post1","0.10.40","0.10.41","0.10.42","0.10.43","0.10.43.post1","0.10.44","0.10.45","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.50.post1","0.10.51","0.10.52","0.10.52.post1","0.10.52.post2","0.10.53","0.10.53.post1","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.59a1","0.10.59a2","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.60","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.66","0.10.67","0.10.68","0.10.68.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.11.0","0.11.0.post1","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.13.post1","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.10","0.12.10.post1","0.12.11","0.12.12","0.12.13","0.12.14","0.12.15","0.12.16","0.12.16.post1","0.12.17","0.12.18","0.12.19","0.12.2","0.12.20","0.12.21","0.12.22","0.12.23","0.12.23.post1","0.12.23.post2","0.12.24","0.12.24.post1","0.12.25","0.12.26","0.12.27","0.12.27a1","0.12.27a2","0.12.27a3","0.12.28","0.12.29","0.12.3","0.12.30","0.12.31","0.12.32","0.12.33","0.12.33.post1","0.12.34","0.12.34.post1","0.12.34a1","0.12.34a2","0.12.34a3","0.12.34a4","0.12.34a5","0.12.35","0.12.36","0.12.37","0.12.4","0.12.5","0.12.6","0.12.7","0.12.8","0.12.9","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.12.38"],"first_patched_version":"0.12.38","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-5472","https://github.com/run-llama/llama_index/commit/c032843a02ce38fd8f284b2aa5a37fd1c17ae635","https://github.com/run-llama/llama_index","https://huntr.com/bounties/df187bda-7911-4823-a19a-e15b2c66b0d4"]},{"id":"GHSA-m84c-4c34-28gf","aliases":["CVE-2025-3108"],"summary":"LlamaIndex has Incomplete Documentation of Program Execution related to JsonPickleSerializer component","published":"2025-07-07T00:30:18Z","modified":"2025-07-07T23:42:18.534851Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.20","0.11.21","0.11.22","0.11.23","0.12.0","0.12.1","0.12.10","0.12.10.post1","0.12.11","0.12.12","0.12.13","0.12.14","0.12.15","0.12.16","0.12.16.post1","0.12.17","0.12.18","0.12.19","0.12.2","0.12.20","0.12.21","0.12.22","0.12.23","0.12.23.post1","0.12.23.post2","0.12.24","0.12.24.post1","0.12.25","0.12.26","0.12.27","0.12.27a1","0.12.27a2","0.12.27a3","0.12.28","0.12.29","0.12.3","0.12.30","0.12.31","0.12.32","0.12.33","0.12.33.post1","0.12.34","0.12.34.post1","0.12.34a1","0.12.34a2","0.12.34a3","0.12.34a4","0.12.34a5","0.12.35","0.12.36","0.12.37","0.12.38","0.12.39","0.12.4","0.12.40","0.12.5","0.12.6","0.12.7","0.12.8","0.12.9","0.11.15-0.12.41"],"first_patched_version":"0.12.41","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-3108","https://github.com/run-llama/llama_index/commit/702e4340623092fac4cf2fe95eb9465034856da3","https://github.com/run-llama/llama_index","https://github.com/run-llama/llama_index/blob/v0.12.41/CHANGELOG.md#llama-index-core-01241","https://huntr.com/bounties/9b55a5e8-74e6-4241-b323-e360dc8b110a"]},{"id":"GHSA-j3wr-m6xh-64hg","aliases":["CVE-2024-12704"],"summary":"LlamaIndex Improper Handling of Exceptional Conditions vulnerability","published":"2025-03-20T12:32:43Z","modified":"2026-02-24T16:20:09.387102Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24","0.10.24.post1","0.10.24a1","0.10.25","0.10.25.post1","0.10.25.post2","0.10.25.post3","0.10.25a1","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.35.post1","0.10.36","0.10.37","0.10.37.post1","0.10.38","0.10.38.post1","0.10.38.post2","0.10.39","0.10.39.post1","0.10.40","0.10.41","0.10.42","0.10.43","0.10.43.post1","0.10.44","0.10.45","0.10.46","0.10.47","0.10.48","0.10.48.post1","0.10.49","0.10.5","0.10.50","0.10.50.post1","0.10.51","0.10.52","0.10.52.post1","0.10.52.post2","0.10.53","0.10.53.post1","0.10.54","0.10.54.post1","0.10.55","0.10.56","0.10.57","0.10.58","0.10.59","0.10.59a1","0.10.59a2","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.60","0.10.61","0.10.62","0.10.63","0.10.64","0.10.65","0.10.66","0.10.67","0.10.68","0.10.68.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.11.0","0.11.0.post1","0.11.1","0.11.10","0.11.11","0.11.12","0.11.13","0.11.13.post1","0.11.14","0.11.15","0.11.16","0.11.17","0.11.18","0.11.19","0.11.2","0.11.20","0.11.21","0.11.22","0.11.23","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.12.0","0.12.1","0.12.2","0.12.3","0.12.4","0.12.5","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.12.6"],"first_patched_version":"0.12.6","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-12704","https://github.com/run-llama/llama_index/commit/d1ecfb77578d089cbe66728f18f635c09aa32a05","https://github.com/run-llama/llama_index","https://huntr.com/bounties/a0b638fd-21c6-4ba7-b381-6ab98472a02a"]},{"id":"GHSA-fxc2-8m62-m85x","aliases":["CVE-2024-45201","PYSEC-2024-192","PYSEC-2026-395"],"summary":"LlamaIndex includes an exec call for `import {cls_name}`","published":"2024-08-22T21:31:29Z","modified":"2026-06-29T12:26:26.008969714Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24","0.10.24.post1","0.10.24a1","0.10.25","0.10.25.post1","0.10.25.post2","0.10.25.post3","0.10.25a1","0.10.26","0.10.27","0.10.28","0.10.29","0.10.3","0.10.30","0.10.31","0.10.32","0.10.33","0.10.34","0.10.35","0.10.35.post1","0.10.36","0.10.37","0.10.37.post1","0.10.5","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.10.38"],"first_patched_version":"0.10.38","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-45201","https://github.com/run-llama/llama_index/pull/13523","https://github.com/run-llama/llama_index/commit/bd827c30484fa085ec769fa55dc7f2add8006ac8","https://github.com/pypa/advisory-database/tree/main/vulns/llama-index/PYSEC-2024-192.yaml","https://github.com/run-llama/llama_index","https://github.com/run-llama/llama_index/compare/v0.10.37...v0.10.38"]},{"id":"GHSA-r6gp-rff2-p3hf","aliases":["CVE-2024-3271","PYSEC-2026-396"],"summary":"llama-index-core Command Injection vulnerability","published":"2024-04-16T00:30:34Z","modified":"2026-06-29T12:26:16.587441560Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24a1","0.10.3","0.10.5","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.10.24"],"first_patched_version":"0.10.24","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-3271","https://github.com/run-llama/llama_index/commit/2c92e88838a5f481d50840240b1dd3180066c6f5","https://github.com/run-llama/llama_index/commit/5fbcb5a8b9f20f81b791c7fc8849e352613ab475","https://github.com/run-llama/llama_index","https://huntr.com/bounties/9b32490e-7cf9-470e-8d49-ba083ae7a279"]},{"id":"GHSA-wvpx-g427-q9wc","aliases":["CVE-2024-3098","PYSEC-2026-397"],"summary":"llama-index-core Prompt Injection vulnerability leading to Arbitrary Code Execution","published":"2024-04-10T18:30:48Z","modified":"2026-06-29T12:26:13.757011500Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.10","0.10.11","0.10.11.post1","0.10.12","0.10.13","0.10.14","0.10.14.post1","0.10.15","0.10.16","0.10.16.post1","0.10.17","0.10.18","0.10.18.post1","0.10.19","0.10.2","0.10.20","0.10.20.post1","0.10.20.post2","0.10.20.post3","0.10.21","0.10.21.post1","0.10.22","0.10.23","0.10.23.post1","0.10.24a1","0.10.3","0.10.5","0.10.5a1","0.10.5a10","0.10.5a2","0.10.5a3","0.10.5a4","0.10.5a5","0.10.5a6","0.10.5a7","0.10.5a8","0.10.5a9","0.10.6","0.10.6.post1","0.10.7","0.10.8","0.10.8.post1","0.10.9","0.9.41","0.9.42","0.9.42.post3","0.9.43","0.9.44","0.9.44.post1","0.9.44.post2","0.9.44.post3","0.9.45","0.9.46","0.9.47","0.9.48","0.9.49","0.9.50","0.9.50.post1","0.9.51","0.9.52","0.9.53","0.9.54","0.9.55","0.9.56","0-0.10.24"],"first_patched_version":"0.10.24","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-3098","https://github.com/run-llama/llama_index/commit/2c92e88838a5f481d50840240b1dd3180066c6f5","https://github.com/run-llama/llama_index/commit/5fbcb5a8b9f20f81b791c7fc8849e352613ab475","https://github.com/run-llama/llama_index","https://huntr.com/bounties/1bce0d61-ad03-4b22-bc32-8f99f92974e7"]}]},{"package":"crewai","ecosystem":"PyPI","category":"agent-framework","description":"CrewAI multi-agent orchestration","homepage":null,"fetched_at":"2026-07-03T05:45:56.950Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"autogen-agentchat","ecosystem":"PyPI","category":"agent-framework","description":"Microsoft's AutoGen agent chat framework","homepage":null,"fetched_at":"2026-07-03T05:45:56.930Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"smolagents","ecosystem":"PyPI","category":"agent-framework","description":"HuggingFace's smolagents","homepage":null,"fetched_at":"2026-07-03T05:45:57.109Z","advisories_count":7,"open_count":7,"withdrawn_count":0,"latest_advisory_id":"PYSEC-2026-543","latest_published":"2026-06-29T11:50:38.792590Z","advisories":[{"id":"PYSEC-2026-543","aliases":["CVE-2025-14931","GHSA-q9r5-6hrr-9ph7"],"summary":"Hugging Face smolagents: Unsafe deserialization in Remote Python Executor leads to RCE","published":"2026-06-29T11:50:38.792590Z","modified":"2026-07-01T20:23:05.184038Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.2","0.1.3","1.0.0","1.1.0","1.10.0","1.11.0","1.12.0","1.13.0","1.14.0","1.15.0","1.16.0","1.16.1","1.17.0","1.18.0","1.19.0","1.2.0","1.2.1","1.2.2","1.20.0","1.21.0","1.21.1","1.21.2","1.21.3","1.22.0","1.23.0","1.3.0","1.4.0","1.4.1","1.5.0","1.5.1","1.6.0","1.7.0","1.8.0","1.8.1","1.9.0","1.9.1","1.9.2","0-1.23.0"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-14931","https://github.com/huggingface/smolagents","https://www.zerodayinitiative.com/advisories/ZDI-25-1143","https://pypi.org/project/smolagents","https://github.com/advisories/GHSA-q9r5-6hrr-9ph7"]},{"id":"PYSEC-2026-542","aliases":["CVE-2025-5120","GHSA-6v92-r5mx-h5fx"],"summary":"smolagents has Sandbox Escape Vulnerability in the local_python_executor.py Module","published":"2026-06-29T11:50:37.329072Z","modified":"2026-07-01T20:23:05.176528Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.2","0.1.3","1.0.0","1.1.0","1.10.0","1.11.0","1.12.0","1.13.0","1.14.0","1.15.0","1.16.0","1.16.1","1.2.0","1.2.1","1.2.2","1.3.0","1.4.0","1.4.1","1.5.0","1.5.1","1.6.0","1.7.0","1.8.0","1.8.1","1.9.0","1.9.1","1.9.2","0-1.17.0"],"first_patched_version":"1.17.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-5120","https://github.com/huggingface/smolagents/commit/33a942e62b6fbf6a35d41f1c735bda2d64c163d0","https://github.com/huggingface/smolagents","https://huntr.com/bounties/63ab1cfe-b573-4cf5-a7d3-fb6c957e34b0","https://pypi.org/project/smolagents","https://github.com/advisories/GHSA-6v92-r5mx-h5fx"]},{"id":"GHSA-54fq-v6x8-244g","aliases":["CVE-2026-4963"],"summary":"Hugging Face Smolagents has an Injection issue","published":"2026-03-27T18:31:28Z","modified":"2026-05-06T22:23:35.017984Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.2","0.1.3","1.0.0","1.1.0","1.10.0","1.11.0","1.12.0","1.13.0","1.14.0","1.15.0","1.16.0","1.16.1","1.17.0","1.18.0","1.19.0","1.2.0","1.2.1","1.2.2","1.20.0","1.21.0","1.21.1","1.21.2","1.21.3","1.22.0","1.23.0","1.24.0","1.3.0","1.4.0","1.4.1","1.5.0","1.5.1","1.6.0","1.7.0","1.8.0","1.8.1","1.9.0","1.9.1","1.9.2","0-1.25.0.dev0"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2026-4963","https://gist.github.com/YLChen-007/35b7d46e892266a0ed6dbe57802858be","https://gist.github.com/YLChen-007/7146f45960f79bc1e2976fed526e0a9b","https://github.com/huggingface/smolagents","https://vuldb.com/?ctiid.353840","https://vuldb.com/?id.353840","https://vuldb.com/?submit.777623","https://vuldb.com/?submit.777643","https://vuldb.com/?submit.777644"]},{"id":"GHSA-jxgv-6j54-wwc7","aliases":["CVE-2026-2654"],"summary":"Hugging Face Smolagents has a Server-Side Request Forgery issue","published":"2026-02-18T15:31:26Z","modified":"2026-05-07T05:35:10.751089Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.2","0.1.3","1.0.0","1.1.0","1.10.0","1.11.0","1.12.0","1.13.0","1.14.0","1.15.0","1.16.0","1.16.1","1.17.0","1.18.0","1.19.0","1.2.0","1.2.1","1.2.2","1.20.0","1.21.0","1.21.1","1.21.2","1.21.3","1.22.0","1.23.0","1.24.0","1.3.0","1.4.0","1.4.1","1.5.0","1.5.1","1.6.0","1.7.0","1.8.0","1.8.1","1.9.0","1.9.1","1.9.2","0-1.24.0"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2026-2654","https://github.com/CH0ico/CVE_choco_smolagent/blob/main/report.md#proof-of-concept-execution","https://github.com/CH0ico/CVE_choco_smolagent/tree/main","https://github.com/huggingface/smolagents","https://vuldb.com/?ctiid.346451","https://vuldb.com/?id.346451","https://vuldb.com/?submit.752774"]},{"id":"GHSA-q9r5-6hrr-9ph7","aliases":["CVE-2025-14931","PYSEC-2026-543"],"summary":"Hugging Face smolagents: Unsafe deserialization in Remote Python Executor leads to RCE","published":"2025-12-23T21:30:29Z","modified":"2026-06-29T12:26:39.927619450Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.2","0.1.3","1.0.0","1.1.0","1.10.0","1.11.0","1.12.0","1.13.0","1.14.0","1.15.0","1.16.0","1.16.1","1.17.0","1.18.0","1.19.0","1.2.0","1.2.1","1.2.2","1.20.0","1.21.0","1.21.1","1.21.2","1.21.3","1.22.0","1.23.0","1.3.0","1.4.0","1.4.1","1.5.0","1.5.1","1.6.0","1.7.0","1.8.0","1.8.1","1.9.0","1.9.1","1.9.2","0-1.23.0"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-14931","https://github.com/huggingface/smolagents","https://www.zerodayinitiative.com/advisories/ZDI-25-1143"]},{"id":"GHSA-8mf9-rmgw-33qc","aliases":["CVE-2025-11844"],"summary":"Hugging Face Smolagents XPath injection vulnerability in the search_item_ctrl_f function","published":"2025-10-22T15:31:11Z","modified":"2025-10-22T19:57:46.786432Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.2","0.1.3","1.0.0","1.1.0","1.10.0","1.11.0","1.12.0","1.13.0","1.14.0","1.15.0","1.16.0","1.16.1","1.17.0","1.18.0","1.19.0","1.2.0","1.2.1","1.2.2","1.20.0","1.21.0","1.21.1","1.21.2","1.21.3","1.3.0","1.4.0","1.4.1","1.5.0","1.5.1","1.6.0","1.7.0","1.8.0","1.8.1","1.9.0","1.9.1","1.9.2","0-1.22.0"],"first_patched_version":"1.22.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-11844","https://github.com/huggingface/smolagents/commit/f570ed5e17999d4cf7d5e79c2830fbaefab8a794","https://github.com/huggingface/smolagents","https://huntr.com/bounties/01ab4405-9bca-4b26-b7a3-5ca1863a69b4"]},{"id":"GHSA-6v92-r5mx-h5fx","aliases":["CVE-2025-5120","PYSEC-2026-542"],"summary":"smolagents has Sandbox Escape Vulnerability in the local_python_executor.py Module","published":"2025-07-27T09:30:26Z","modified":"2026-06-29T12:26:32.423727892Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.2","0.1.3","1.0.0","1.1.0","1.10.0","1.11.0","1.12.0","1.13.0","1.14.0","1.15.0","1.16.0","1.16.1","1.2.0","1.2.1","1.2.2","1.3.0","1.4.0","1.4.1","1.5.0","1.5.1","1.6.0","1.7.0","1.8.0","1.8.1","1.9.0","1.9.1","1.9.2","0-1.17.0"],"first_patched_version":"1.17.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-5120","https://github.com/huggingface/smolagents/commit/33a942e62b6fbf6a35d41f1c735bda2d64c163d0","https://github.com/huggingface/smolagents","https://huntr.com/bounties/63ab1cfe-b573-4cf5-a7d3-fb6c957e34b0"]}]},{"package":"pydantic-ai","ecosystem":"PyPI","category":"agent-framework","description":"Pydantic-based agent framework","homepage":null,"fetched_at":"2026-07-03T05:45:57.091Z","advisories_count":4,"open_count":4,"withdrawn_count":0,"latest_advisory_id":"GHSA-cg7w-rg45-pc59","latest_published":"2026-06-26T19:17:56Z","advisories":[{"id":"GHSA-cg7w-rg45-pc59","aliases":["CVE-2026-48782"],"summary":"pydantic-ai: SSRF blocklist bypass via IPv4-compatible, SIIT/IVI, and local NAT64 IPv6 addresses (incomplete fix of CVE-2026-46678)","published":"2026-06-26T19:17:56Z","modified":"2026-06-26T19:30:08.948264282Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["1.100.0","1.101.0","1.56.0","1.57.0","1.58.0","1.59.0","1.60.0","1.61.0","1.62.0","1.63.0","1.64.0","1.65.0","1.66.0","1.67.0","1.68.0","1.69.0","1.70.0","1.71.0","1.72.0","1.73.0","1.74.0","1.75.0","1.76.0","1.77.0","1.78.0","1.79.0","1.80.0","1.81.0","1.82.0","1.83.0","1.84.0","1.84.1","1.85.0","1.85.1","1.86.0","1.86.1","1.87.0","1.88.0","1.89.0","1.89.1","1.90.0","1.91.0","1.92.0","1.93.0","1.94.0","1.95.0","1.95.1","1.96.0","1.96.1","1.97.0","1.98.0","1.99.0","1.56.0-1.102.0","2.0.0b1","2.0.0b2","2.0.0b1-2.0.0b3"],"first_patched_version":"1.102.0","reference_urls":["https://github.com/pydantic/pydantic-ai/security/advisories/GHSA-cg7w-rg45-pc59","https://nvd.nist.gov/vuln/detail/CVE-2026-48782","https://github.com/pydantic/pydantic-ai/pull/5596","https://github.com/pydantic/pydantic-ai/commit/1add06179ba4de259f7ab977620b697b7209f7e4","https://github.com/pydantic/pydantic-ai","https://github.com/pydantic/pydantic-ai/releases/tag/v1.102.0"]},{"id":"GHSA-cqp8-fcvh-x7r3","aliases":["CVE-2026-46678"],"summary":"Pydantic AI: SSRF cloud-metadata blocklist bypass via IPv4-mapped IPv6 (Incomplete fix of CVE-2026-25580)","published":"2026-05-21T21:35:18Z","modified":"2026-05-21T21:45:17.783427824Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["1.56.0","1.57.0","1.58.0","1.59.0","1.60.0","1.61.0","1.62.0","1.63.0","1.64.0","1.65.0","1.66.0","1.67.0","1.68.0","1.69.0","1.70.0","1.71.0","1.72.0","1.73.0","1.74.0","1.75.0","1.76.0","1.77.0","1.78.0","1.79.0","1.80.0","1.81.0","1.82.0","1.83.0","1.84.0","1.84.1","1.85.0","1.85.1","1.86.0","1.86.1","1.87.0","1.88.0","1.89.0","1.89.1","1.90.0","1.91.0","1.92.0","1.93.0","1.94.0","1.95.0","1.95.1","1.96.0","1.96.1","1.97.0","1.98.0","1.56.0-1.99.0"],"first_patched_version":"1.99.0","reference_urls":["https://github.com/pydantic/pydantic-ai/security/advisories/GHSA-2jrp-274c-jhv3","https://github.com/pydantic/pydantic-ai/security/advisories/GHSA-cqp8-fcvh-x7r3","https://github.com/pydantic/pydantic-ai"]},{"id":"GHSA-wjp5-868j-wqv7","aliases":["CVE-2026-25640"],"summary":"Pydantic AI has Stored XSS via Path Traversal in Web UI CDN URL","published":"2026-02-06T18:51:57Z","modified":"2026-02-06T22:16:35.013115Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["1.34.0","1.35.0","1.36.0","1.37.0","1.38.0","1.39.0","1.39.1","1.40.0","1.41.0","1.42.0","1.43.0","1.44.0","1.46.0","1.47.0","1.48.0","1.49.0","1.50.0","1.34.0-1.51.0"],"first_patched_version":"1.51.0","reference_urls":["https://github.com/pydantic/pydantic-ai/security/advisories/GHSA-wjp5-868j-wqv7","https://nvd.nist.gov/vuln/detail/CVE-2026-25640","https://github.com/pydantic/pydantic-ai","https://github.com/pydantic/pydantic-ai/releases/tag/v1.51.0"]},{"id":"GHSA-2jrp-274c-jhv3","aliases":["CVE-2026-25580"],"summary":"Pydantic AI has Server-Side Request Forgery (SSRF) in URL Download Handling","published":"2026-02-06T18:32:39Z","modified":"2026-02-06T22:21:57.742443Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.26","0.0.27","0.0.28","0.0.29","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.1.0","0.1.1","0.1.10","0.1.11","0.1.12","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.1","0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.15","0.2.16","0.2.17","0.2.18","0.2.19","0.2.2","0.2.20","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.1","0.3.2","0.3.3","0.3.4","0.3.5","0.3.6","0.3.7","0.4.0","0.4.1","0.4.10","0.4.11","0.4.2","0.4.3","0.4.4","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.6.0","0.6.1","0.6.2","0.7.0","0.7.1","0.7.2","0.7.3","0.7.4","0.7.5","0.7.6","0.8.0","0.8.1","1.0.0","1.0.0b1","1.0.1","1.0.10","1.0.11","1.0.12","1.0.13","1.0.14","1.0.15","1.0.16","1.0.17","1.0.18","1.0.2","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.0.8","1.0.9","1.1.0","1.10.0","1.11.0","1.11.1","1.12.0","1.13.0","1.14.0","1.14.1","1.15.0","1.16.0","1.17.0","1.18.0","1.19.0","1.2.0","1.2.1","1.20.0","1.21.0","1.22.0","1.23.0","1.24.0","1.25.0","1.25.1","1.26.0","1.27.0","1.28.0","1.29.0","1.3.0","1.30.0","1.30.1","1.31.0","1.32.0","1.33.0","1.34.0","1.35.0","1.36.0","1.37.0","1.38.0","1.39.0","1.39.1","1.4.0","1.40.0","1.41.0","1.42.0","1.43.0","1.44.0","1.46.0","1.47.0","1.48.0","1.49.0","1.5.0","1.50.0","1.51.0","1.52.0","1.53.0","1.54.0","1.55.0","1.6.0","1.7.0","1.8.0","1.9.0","1.9.1","0.0.26-1.56.0"],"first_patched_version":"1.56.0","reference_urls":["https://github.com/pydantic/pydantic-ai/security/advisories/GHSA-2jrp-274c-jhv3","https://nvd.nist.gov/vuln/detail/CVE-2026-25580","https://github.com/pydantic/pydantic-ai/commit/d398bc9d39aecca6530fa7486a410d5cce936301","https://github.com/pydantic/pydantic-ai"]}]},{"package":"pinecone-client","ecosystem":"PyPI","category":"rag","description":"Pinecone vector DB SDK","homepage":null,"fetched_at":"2026-07-03T05:45:57.325Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"chromadb","ecosystem":"PyPI","category":"rag","description":"Chroma open-source embedding DB","homepage":null,"fetched_at":"2026-07-03T05:45:57.439Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"PYSEC-2026-311","latest_published":"2026-06-29T11:50:50.691654Z","advisories":[{"id":"PYSEC-2026-311","aliases":["CVE-2026-45829","GHSA-f4j7-r4q5-qw2c"],"summary":"ChromaDB Python project has a pre-authentication code injection vulnerability","published":"2026-06-29T11:50:50.691654Z","modified":"2026-07-01T20:22:50.354214Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["1.0.0","1.0.10","1.0.11","1.0.12","1.0.13","1.0.15","1.0.16","1.0.17","1.0.18","1.0.19","1.0.2","1.0.20","1.0.21","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.0.8","1.0.9","1.1.0","1.1.1","1.2.0","1.2.1","1.2.2","1.3.0","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.3.7","1.4.0","1.4.1","1.5.0","1.5.1","1.5.2","1.5.3","1.5.4","1.5.5","1.5.6","1.5.7","1.5.8","1.5.9","1.0.0-1.5.9"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2026-45829","https://github.com/chroma-core/chroma/issues/6717","https://github.com/chroma-core/chroma","https://www.hiddenlayer.com/research/chromatoast-served-pre-auth","https://pypi.org/project/chromadb","https://github.com/advisories/GHSA-f4j7-r4q5-qw2c"]},{"id":"GHSA-f4j7-r4q5-qw2c","aliases":["CVE-2026-45829","PYSEC-2026-311"],"summary":"ChromaDB Python project has a pre-authentication code injection vulnerability","published":"2026-05-18T18:31:30Z","modified":"2026-06-29T12:26:36.812893845Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["1.0.0","1.0.10","1.0.11","1.0.12","1.0.13","1.0.15","1.0.16","1.0.17","1.0.18","1.0.19","1.0.2","1.0.20","1.0.21","1.0.3","1.0.4","1.0.5","1.0.6","1.0.7","1.0.8","1.0.9","1.1.0","1.1.1","1.2.0","1.2.1","1.2.2","1.3.0","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.3.7","1.4.0","1.4.1","1.5.0","1.5.1","1.5.2","1.5.3","1.5.4","1.5.5","1.5.6","1.5.7","1.5.8","1.5.9","1.0.0-1.5.9"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2026-45829","https://github.com/chroma-core/chroma/issues/6717","https://github.com/chroma-core/chroma","https://www.hiddenlayer.com/research/chromatoast-served-pre-auth"]}]},{"package":"qdrant-client","ecosystem":"PyPI","category":"rag","description":"Qdrant vector DB SDK","homepage":null,"fetched_at":"2026-07-03T05:45:57.427Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"PYSEC-2026-509","latest_published":"2026-06-29T11:50:41.827932Z","advisories":[{"id":"PYSEC-2026-509","aliases":["CVE-2024-3829","GHSA-7m75-x27w-r52r"],"summary":"qdrant input validation failure ","published":"2026-06-29T11:50:41.827932Z","modified":"2026-07-01T20:23:03.439257Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.10.0","0.10.1","0.10.2","0.10.3","0.11.0","0.11.1","0.11.10","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.2.0","0.3.0","0.3.1","0.3.10","0.3.11","0.3.12","0.3.2","0.3.3","0.3.4","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.4.1","0.5.0","0.6.0","0.6.1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.3","0.8.4","0.8.5","0.8.6","0.8.7","0.9.0","0.9.1","0.9.2","0.9.3","0.9.4","0.9.5","0.9.7","1.0.0","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.1.0","1.1.1","1.1.2","1.1.3","1.1.4","1.1.5","1.1.6","1.1.7","1.2.0","1.3.0","1.3.1","1.3.2","1.4.0","1.5.0","1.5.1","1.5.2","1.5.3","1.5.4","1.6.0","1.6.1","1.6.2","1.6.3","1.6.4","1.6.5","1.6.6","1.6.7","1.6.8","1.6.9","1.7.0","1.7.1","1.7.2","1.7.3","1.8.0","1.8.1","1.8.2","0-1.9.0"],"first_patched_version":"1.9.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-3829","https://github.com/qdrant/qdrant/commit/ee7a31ec3459a6a4219200234615c1817ab82260","https://github.com/qdrant/qdrant-client","https://huntr.com/bounties/abd9c906-75ee-4d84-b76d-ce1386401e08","https://pypi.org/project/qdrant-client","https://github.com/advisories/GHSA-7m75-x27w-r52r"]},{"id":"GHSA-7m75-x27w-r52r","aliases":["CVE-2024-3829","PYSEC-2026-509"],"summary":"qdrant input validation failure ","published":"2024-06-03T12:30:38Z","modified":"2026-06-29T12:26:09.727838895Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.10.0","0.10.1","0.10.2","0.10.3","0.11.0","0.11.1","0.11.10","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.2.0","0.3.0","0.3.1","0.3.10","0.3.11","0.3.12","0.3.2","0.3.3","0.3.4","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.4.1","0.5.0","0.6.0","0.6.1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.3","0.8.4","0.8.5","0.8.6","0.8.7","0.9.0","0.9.1","0.9.2","0.9.3","0.9.4","0.9.5","0.9.7","1.0.0","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.1.0","1.1.1","1.1.2","1.1.3","1.1.4","1.1.5","1.1.6","1.1.7","1.2.0","1.3.0","1.3.1","1.3.2","1.4.0","1.5.0","1.5.1","1.5.2","1.5.3","1.5.4","1.6.0","1.6.1","1.6.2","1.6.3","1.6.4","1.6.5","1.6.6","1.6.7","1.6.8","1.6.9","1.7.0","1.7.1","1.7.2","1.7.3","1.8.0","1.8.1","1.8.2","0-1.9.0"],"first_patched_version":"1.9.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-3829","https://github.com/qdrant/qdrant/commit/ee7a31ec3459a6a4219200234615c1817ab82260","https://github.com/qdrant/qdrant-client","https://huntr.com/bounties/abd9c906-75ee-4d84-b76d-ce1386401e08"]}]},{"package":"weaviate-client","ecosystem":"PyPI","category":"rag","description":"Weaviate vector DB client","homepage":null,"fetched_at":"2026-07-03T05:45:57.359Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"faiss-cpu","ecosystem":"PyPI","category":"rag","description":"Meta's FAISS similarity search","homepage":null,"fetched_at":"2026-07-03T05:45:57.341Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"transformers","ecosystem":"PyPI","category":"inference","description":"HuggingFace Transformers library","homepage":null,"fetched_at":"2026-07-03T05:45:58.768Z","advisories_count":36,"open_count":36,"withdrawn_count":0,"latest_advisory_id":"GHSA-29pf-2h5f-8g72","latest_published":"2026-05-26T13:30:33Z","advisories":[{"id":"GHSA-29pf-2h5f-8g72","aliases":["CVE-2026-4372"],"summary":"HuggingFace transformers vulnerable to remote code execution","published":"2026-05-26T13:30:33Z","modified":"2026-07-01T18:15:16.636266480Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.53.0","4.53.1","4.53.2","4.53.3","4.54.0","4.54.1","4.55.0","4.55.1","4.55.2","4.55.3","4.55.4","4.56.0","4.56.1","4.56.2","4.57.0","4.57.1","4.57.2","4.57.3","4.57.4","4.57.5","4.57.6","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","5.0.0","5.0.0rc0","5.0.0rc1","5.0.0rc2","5.0.0rc3","5.1.0","5.2.0","0-5.3.0"],"first_patched_version":"5.3.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2026-4372","https://github.com/huggingface/transformers/commit/a7f8e7ff37d87d1a1a0c8cf607971c607741452f","https://github.com/huggingface/transformers","https://huntr.com/bounties/1f693a6e-6836-4b8b-a0bd-ca036fba8884"]},{"id":"GHSA-69w3-r845-3855","aliases":["CVE-2026-1839"],"summary":"HuggingFace Transformers allows for arbitrary code execution in the `Trainer` class","published":"2026-04-07T06:30:28Z","modified":"2026-04-17T09:29:13.498050193Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.53.0","4.53.1","4.53.2","4.53.3","4.54.0","4.54.1","4.55.0","4.55.1","4.55.2","4.55.3","4.55.4","4.56.0","4.56.1","4.56.2","4.57.0","4.57.1","4.57.2","4.57.3","4.57.4","4.57.5","4.57.6","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","5.0.0rc0","5.0.0rc1","5.0.0rc2","0-5.0.0rc3"],"first_patched_version":"5.0.0rc3","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2026-1839","https://github.com/huggingface/transformers/commit/03c8082ba4594c9b8d6fe190ca9bed0e5f8ca396","https://github.com/huggingface/transformers","https://github.com/huggingface/transformers/releases/tag/v5.0.0rc3","https://huntr.com/bounties/3c77bb97-e493-493d-9a88-c57f5c536485"]},{"id":"PYSEC-2025-218","aliases":["CVE-2025-14930"],"summary":"","published":"2025-12-23T21:15:48.367Z","modified":"2026-05-21T15:00:33.791364554Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.53.0","4.53.1","4.53.2","4.53.3","4.54.0","4.54.1","4.55.0","4.55.1","4.55.2","4.55.3","4.55.4","4.56.0","4.56.1","4.56.2","4.57.0","4.57.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.57.1"],"first_patched_version":null,"reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-25-1145/"]},{"id":"PYSEC-2025-217","aliases":["CVE-2025-14929"],"summary":"","published":"2025-12-23T21:15:48.240Z","modified":"2026-05-21T15:00:24.271970226Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.53.0","4.53.1","4.53.2","4.53.3","4.54.0","4.54.1","4.55.0","4.55.1","4.55.2","4.55.3","4.55.4","4.56.0","4.56.1","4.56.2","4.57.0","4.57.1","4.57.2","4.57.3","4.57.4","4.57.5","4.57.6","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","5.0.0rc0","0-5.0.0-rc0"],"first_patched_version":null,"reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-25-1144/"]},{"id":"PYSEC-2025-216","aliases":["CVE-2025-14928"],"summary":"","published":"2025-12-23T21:15:48.110Z","modified":"2026-05-21T15:00:32.939311939Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.53.0","4.53.1","4.53.2","4.53.3","4.54.0","4.54.1","4.55.0","4.55.1","4.55.2","4.55.3","4.55.4","4.56.0","4.56.1","4.56.2","4.57.0","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.57.0"],"first_patched_version":null,"reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-25-1146/"]},{"id":"PYSEC-2025-215","aliases":["CVE-2025-14927"],"summary":"","published":"2025-12-23T21:15:47.987Z","modified":"2026-05-21T15:00:32.888290877Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.53.0","4.53.1","4.53.2","4.53.3","4.54.0","4.54.1","4.55.0","4.55.1","4.55.2","4.55.3","4.55.4","4.56.0","4.56.1","4.56.2","4.57.0","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.57.0"],"first_patched_version":null,"reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-25-1148/"]},{"id":"PYSEC-2025-214","aliases":["CVE-2025-14926"],"summary":"","published":"2025-12-23T21:15:47.857Z","modified":"2026-05-21T15:00:32.929011749Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.53.0","4.53.1","4.53.2","4.53.3","4.54.0","4.54.1","4.55.0","4.55.1","4.55.2","4.55.3","4.55.4","4.56.0","4.56.1","4.56.2","4.57.0","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.57.0"],"first_patched_version":null,"reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-25-1147/"]},{"id":"PYSEC-2025-213","aliases":["CVE-2025-14924"],"summary":"","published":"2025-12-23T21:15:47.600Z","modified":"2026-05-21T15:00:32.048516839Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.53.0","4.53.1","4.53.2","4.53.3","4.54.0","4.54.1","4.55.0","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.55.0"],"first_patched_version":null,"reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-25-1141/"]},{"id":"PYSEC-2025-212","aliases":["CVE-2025-14921"],"summary":"","published":"2025-12-23T21:15:47.340Z","modified":"2026-05-21T15:00:32.052313357Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.53.0","4.53.1","4.53.2","4.53.3","4.54.0","4.54.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.54.1"],"first_patched_version":null,"reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-25-1149/"]},{"id":"PYSEC-2025-211","aliases":["CVE-2025-14920"],"summary":"","published":"2025-12-23T21:15:47.183Z","modified":"2026-05-21T15:00:32.080516132Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.53.0","4.53.1","4.53.2","4.53.3","4.54.0","4.54.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.54.1"],"first_patched_version":null,"reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-25-1150/"]},{"id":"GHSA-4w7r-h757-3r74","aliases":["CVE-2025-6921"],"summary":"Hugging Face Transformers vulnerable to Regular Expression Denial of Service (ReDoS) in the AdamWeightDecay optimizer","published":"2025-09-23T15:31:09Z","modified":"2026-02-04T02:22:49.550201Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.53.0"],"first_patched_version":"4.53.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-6921","https://github.com/huggingface/transformers/commit/47c34fba5c303576560cb29767efb452ff12b8be","https://github.com/huggingface/transformers/commit/d37f7517972f67e3f2194c000ed0f87f064e5099","https://github.com/huggingface/transformers","https://huntr.com/bounties/287d15a7-6e7c-45d2-8c05-11e305776f1f"]},{"id":"GHSA-rcv9-qm8p-9p6j","aliases":["CVE-2025-6051"],"summary":"Hugging Face Transformers library has Regular Expression Denial of Service","published":"2025-09-14T18:30:26Z","modified":"2026-02-04T04:26:51.929360Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.53.0"],"first_patched_version":"4.53.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-6051","https://github.com/huggingface/transformers/pull/38844","https://github.com/huggingface/transformers/commit/54a02160eb030da9be18231c77791f2eb3a52216","https://github.com/huggingface/transformers/commit/ba8eaba9865618253f997784aa565b96206426f0","https://github.com/huggingface/transformers","https://huntr.com/bounties/af929523-7b59-418a-bf55-301830b2ac9d"]},{"id":"GHSA-59p9-h35m-wg4g","aliases":["CVE-2025-6638"],"summary":"Hugging Face Transformers is vulnerable to ReDoS through its MarianTokenizer","published":"2025-09-12T12:30:23Z","modified":"2026-02-04T02:53:08.106733Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.53.0"],"first_patched_version":"4.53.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-6638","https://github.com/huggingface/transformers/commit/47c34fba5c303576560cb29767efb452ff12b8be","https://github.com/huggingface/transformers/commit/d37f7517972f67e3f2194c000ed0f87f064e5099","https://github.com/huggingface/transformers","https://huntr.com/bounties/6a6c933f-9ce8-4ded-8b3b-2c1444c61f36"]},{"id":"GHSA-9356-575x-2w9m","aliases":["CVE-2025-5197"],"summary":"Hugging Face Transformers Regular Expression Denial of Service (ReDoS) vulnerability","published":"2025-08-06T12:31:20Z","modified":"2026-02-04T03:02:18.027623Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.52.1","4.52.2","4.52.3","4.52.4","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.53.0"],"first_patched_version":"4.53.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-5197","https://github.com/huggingface/transformers/commit/701caef704e356dc2f9331cc3fd5df0eccb4720a","https://github.com/huggingface/transformers/commit/944b56000be5e9b61af8301aa340838770ad8a0b","https://github.com/huggingface/transformers","https://huntr.com/bounties/3f8b3fd0-166b-46e7-b60f-60dd9d2678bf"]},{"id":"GHSA-37mw-44qp-f5jm","aliases":["CVE-2025-3933"],"summary":"Transformers is vulnerable to ReDoS attack through its DonutProcessor class","published":"2025-07-11T12:30:32Z","modified":"2026-02-04T03:41:44.405486Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.52.1"],"first_patched_version":"4.52.1","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-3933","https://github.com/huggingface/transformers/pull/37788","https://github.com/huggingface/transformers/commit/ebbe9b12dd75b69f92100d684c47f923ee262a93","https://github.com/huggingface/transformers","https://huntr.com/bounties/25282953-5827-4384-bb6f-5790d275721b"]},{"id":"GHSA-489j-g2vx-39wf","aliases":["CVE-2025-3262"],"summary":"Transformers vulnerable to ReDoS attack through its SETTING_RE variable","published":"2025-07-07T12:30:22Z","modified":"2025-08-04T16:09:51.283431Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["4.49.0","4.50.0","4.50.1","4.50.2","4.50.3","4.49.0-4.51.0"],"first_patched_version":"4.51.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-3262","https://github.com/huggingface/transformers/commit/0720e206c6ba28887e4d60ef60a6a089f6c1cc76","https://github.com/huggingface/transformers/commit/126abe3461762e5fc180e7e614391d1b4ab051ca","https://github.com/huggingface/transformers","https://huntr.com/bounties/ecf5ccc4-39e7-4fb3-b547-14a41d31a184"]},{"id":"GHSA-jjph-296x-mrcr","aliases":["CVE-2025-3264"],"summary":"Transformers vulnerable to ReDoS attack through its get_imports() function","published":"2025-07-07T12:30:22Z","modified":"2025-07-08T17:27:12.108699Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.51.0"],"first_patched_version":"4.51.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-3264","https://github.com/huggingface/transformers/commit/0720e206c6ba28887e4d60ef60a6a089f6c1cc76","https://github.com/huggingface/transformers/commit/126abe3461762e5fc180e7e614391d1b4ab051ca","https://github.com/huggingface/transformers","https://huntr.com/bounties/3c6f7822-9992-476d-8cf0-b0b1623427df"]},{"id":"GHSA-phhr-52qp-3mj4","aliases":["CVE-2025-3777"],"summary":"Transformers's Improper Input Validation vulnerability can be exploited through username injection","published":"2025-07-07T12:30:22Z","modified":"2026-02-04T02:50:35.590933Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.51.0","4.51.1","4.51.2","4.51.3","4.52.0","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.52.1"],"first_patched_version":"4.52.1","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-3777","https://github.com/huggingface/transformers/commit/4dda5f71b35fb70cf602187eef84bb17a50b9082","https://github.com/huggingface/transformers","https://github.com/huggingface/transformers/blame/a7d2bbaaa8aac64f7c1ee8c1421cfe84b38359a4/src/transformers/image_utils.py","https://huntr.com/bounties/ccba0730-9248-4853-b7ff-5c20e6364f09"]},{"id":"GHSA-q2wp-rjmx-x6x9","aliases":["CVE-2025-3263"],"summary":"Transformers's ReDoS vulnerability in get_configuration_file can lead to catastrophic backtracking","published":"2025-07-07T12:30:22Z","modified":"2025-07-08T16:57:18.403502Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.50.0","4.50.1","4.50.2","4.50.3","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.51.0"],"first_patched_version":"4.51.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-3263","https://github.com/huggingface/transformers/commit/0720e206c6ba28887e4d60ef60a6a089f6c1cc76","https://github.com/huggingface/transformers/commit/126abe3461762e5fc180e7e614391d1b4ab051ca","https://github.com/huggingface/transformers","https://huntr.com/bounties/c7a69150-54f8-4e81-8094-791e7a2a0f29"]},{"id":"GHSA-qq3j-4f4f-9583","aliases":["CVE-2025-2099","PYSEC-2025-40"],"summary":"Hugging Face Transformers Regular Expression Denial of Service","published":"2025-05-19T12:30:33Z","modified":"2025-09-25T21:51:20.118086Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.50.0"],"first_patched_version":"4.50.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-2099","https://github.com/huggingface/transformers/pull/36648","https://github.com/huggingface/transformers/commit/8cb522b4190bd556ce51be04942720650b1a3e57","https://github.com/huggingface/transformers","https://github.com/pypa/advisory-database/tree/main/vulns/transformers/PYSEC-2025-40.yaml","https://huntr.com/bounties/97b780f3-ffca-424f-ad5d-0e1c57a5bde4"]},{"id":"PYSEC-2025-40","aliases":["CVE-2025-2099","GHSA-qq3j-4f4f-9583"],"summary":"","published":"2025-05-19T12:15:19Z","modified":"2026-06-10T17:02:48.111891265Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","v4.49.0-AyaVision","v4.49.0-SigLIP-2","v4.49.0-SmolVLM-2","v4.33.1","v4.16.0","v4.15.0","v4.14.0","v4.13.0","v4.12.0","v4.11.0","v4.10.0","v4.9.0","v4.8.0","v4.7.0","v4.6.0","v4.5.0","v4.4.0","v4.3.0.rc1","4.3.0.rc1","v4.2.0","v4.1.1","v4.1.0","v3.5.0","v3.4.0","v3.3.1","v3.3.0","v3.2.0","v3.1.0","v3.0.2","v3.0.1","v3.0.0","v2.11.0","v2.10.0","v2.9.1","v2.9.0","v2.8.0","v2.7.0","v2.6.0","v2.5.1","v2.5.0","v2.4.1","v2.4.0","v2.3.0","v2.2.2","v2.2.1","v2.2.0","v2.1.1","v2.1.0","v2.0.0","1.2.0","1.1.0","1.0","v0.6.2","v0.6.1","v0.6.0","v0.5.1","v0.5.0","0.5.0","v0.4.0","v0.3.0","v0.2.0","v0.1.2","0.1.2","0-8cb522b4190bd556ce51be04942720650b1a3e57","0-4.49.0"],"first_patched_version":"8cb522b4190bd556ce51be04942720650b1a3e57","reference_urls":["https://huntr.com/bounties/97b780f3-ffca-424f-ad5d-0e1c57a5bde4","https://github.com/huggingface/transformers/commit/8cb522b4190bd556ce51be04942720650b1a3e57","https://huntr.com/bounties/97b780f3-ffca-424f-ad5d-0e1c57a5bde4","https://github.com/advisories/GHSA-qq3j-4f4f-9583"]},{"id":"GHSA-fpwr-67px-3qhx","aliases":["CVE-2025-1194"],"summary":"Transformers Regular Expression Denial of Service (ReDoS) vulnerability","published":"2025-04-29T12:30:21Z","modified":"2026-02-04T03:52:39.517798Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.48.0","4.48.1","4.48.2","4.48.3","4.49.0","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.50.0"],"first_patched_version":"4.50.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-1194","https://github.com/huggingface/transformers/commit/92c5ca9dd70de3ade2af2eb835c96215cc50e815","https://github.com/huggingface/transformers","https://huntr.com/bounties/86f58dcd-683f-4adc-a735-849f51e9abb2"]},{"id":"GHSA-6rvg-6v2m-4j46","aliases":["CVE-2024-12720"],"summary":"Transformers Regular Expression Denial of Service (ReDoS) vulnerability","published":"2025-03-20T12:32:43Z","modified":"2026-02-04T03:43:16.957765Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.48.0"],"first_patched_version":"4.48.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-12720","https://github.com/huggingface/transformers/commit/deac971c469bcbb182c2e52da0b82fb3bf54cccf","https://github.com/huggingface/transformers","https://huntr.com/bounties/4bed1214-7835-4252-a853-22bbad891f98"]},{"id":"GHSA-hxxf-235m-72v3","aliases":["CVE-2024-11394","PYSEC-2024-229"],"summary":"Deserialization of Untrusted Data in Hugging Face Transformers","published":"2024-11-23T03:31:58Z","modified":"2026-02-04T03:44:40.634360Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.48.0"],"first_patched_version":"4.48.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-11394","https://github.com/huggingface/transformers/issues/34840","https://github.com/huggingface/transformers/pull/35296","https://github.com/huggingface/transformers","https://github.com/pypa/advisory-database/tree/main/vulns/transformers/PYSEC-2024-229.yaml","https://www.zerodayinitiative.com/advisories/ZDI-24-1515"]},{"id":"GHSA-qxrp-vhvm-j765","aliases":["CVE-2024-11392","PYSEC-2024-227"],"summary":"Deserialization of Untrusted Data in Hugging Face Transformers","published":"2024-11-23T03:31:58Z","modified":"2026-02-04T02:30:20.854603Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.48.0"],"first_patched_version":"4.48.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-11392","https://github.com/huggingface/transformers/issues/34840","https://github.com/huggingface/transformers/pull/35296","https://github.com/huggingface/transformers","https://github.com/pypa/advisory-database/tree/main/vulns/transformers/PYSEC-2024-227.yaml","https://www.zerodayinitiative.com/advisories/ZDI-24-1513"]},{"id":"GHSA-wrfc-pvp9-mr9g","aliases":["CVE-2024-11393","PYSEC-2024-228"],"summary":"Deserialization of Untrusted Data in Hugging Face Transformers","published":"2024-11-23T03:31:58Z","modified":"2026-02-04T04:32:58.737465Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.48.0"],"first_patched_version":"4.48.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-11393","https://github.com/huggingface/transformers/issues/34840","https://github.com/huggingface/transformers/pull/35296","https://github.com/huggingface/transformers","https://github.com/pypa/advisory-database/tree/main/vulns/transformers/PYSEC-2024-228.yaml","https://www.zerodayinitiative.com/advisories/ZDI-24-1514"]},{"id":"PYSEC-2024-228","aliases":["CVE-2024-11393","GHSA-wrfc-pvp9-mr9g"],"summary":"","published":"2024-11-22T22:15:07Z","modified":"2026-06-10T17:00:13.252500033Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.48.0"],"first_patched_version":"4.48.0","reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-24-1514/","https://github.com/advisories/GHSA-wrfc-pvp9-mr9g"]},{"id":"PYSEC-2024-229","aliases":["CVE-2024-11394","GHSA-hxxf-235m-72v3"],"summary":"","published":"2024-11-22T22:15:07Z","modified":"2026-06-10T17:02:30.328718397Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.48.0"],"first_patched_version":"4.48.0","reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-24-1515/","https://github.com/advisories/GHSA-hxxf-235m-72v3"]},{"id":"PYSEC-2024-227","aliases":["CVE-2024-11392","GHSA-qxrp-vhvm-j765"],"summary":"","published":"2024-11-22T22:15:06Z","modified":"2026-06-10T17:02:35.857656186Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.38.0","4.38.1","4.38.2","4.39.0","4.39.1","4.39.2","4.39.3","4.4.0","4.4.1","4.4.2","4.40.0","4.40.1","4.40.2","4.41.0","4.41.1","4.41.2","4.42.0","4.42.1","4.42.2","4.42.3","4.42.4","4.43.0","4.43.1","4.43.2","4.43.3","4.43.4","4.44.0","4.44.1","4.44.2","4.45.0","4.45.1","4.45.2","4.46.0","4.46.1","4.46.2","4.46.3","4.47.0","4.47.1","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.48.0"],"first_patched_version":"4.48.0","reference_urls":["https://www.zerodayinitiative.com/advisories/ZDI-24-1513/","https://github.com/advisories/GHSA-qxrp-vhvm-j765"]},{"id":"GHSA-37q5-v5qm-c9v8","aliases":["CVE-2024-3568"],"summary":"Transformers Deserialization of Untrusted Data vulnerability","published":"2024-04-10T18:30:48Z","modified":"2024-04-10T22:42:15.206835Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.36.0","4.36.1","4.36.2","4.37.0","4.37.1","4.37.2","4.4.0","4.4.1","4.4.2","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.38.0"],"first_patched_version":"4.38.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-3568","https://github.com/huggingface/transformers/commit/693667b8ac8138b83f8adb6522ddaf42fa07c125","https://github.com/huggingface/transformers","https://huntr.com/bounties/b3c36992-5264-4d7f-9906-a996efafba8f"]},{"id":"GHSA-v68g-wm8c-6x7j","aliases":["CVE-2023-7018","PYSEC-2023-301"],"summary":"transformers has a Deserialization of Untrusted Data vulnerability","published":"2023-12-20T18:30:32Z","modified":"2024-11-22T21:07:38.122545Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.4.0","4.4.1","4.4.2","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.36.0"],"first_patched_version":"4.36.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-7018","https://github.com/huggingface/transformers/commit/1d63b0ec361e7a38f1339385e8a5a855085532ce","https://github.com/huggingface/transformers","https://github.com/pypa/advisory-database/tree/main/vulns/transformers/PYSEC-2023-301.yaml","https://huntr.com/bounties/e1a3e548-e53a-48df-b708-9ee62140963c"]},{"id":"PYSEC-2023-301","aliases":["CVE-2023-7018","GHSA-v68g-wm8c-6x7j"],"summary":"","published":"2023-12-20T17:15:00Z","modified":"2026-06-10T17:02:48.312143075Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.4.0","4.4.1","4.4.2","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","v4.33.1","v4.16.0","v4.15.0","v4.14.0","v4.13.0","v4.12.0","v4.11.0","v4.10.0","v4.9.0","v4.8.0","v4.7.0","v4.6.0","v4.5.0","v4.4.0","v4.3.0.rc1","4.3.0.rc1","v4.2.0","v4.1.1","v4.1.0","v3.5.0","v3.4.0","v3.3.1","v3.3.0","v3.2.0","v3.1.0","v3.0.2","v3.0.1","v3.0.0","v2.11.0","v2.10.0","v2.9.1","v2.9.0","v2.8.0","v2.7.0","v2.6.0","v2.5.1","v2.5.0","v2.4.1","v2.4.0","v2.3.0","v2.2.2","v2.2.1","v2.2.0","v2.1.1","v2.1.0","v2.0.0","1.2.0","1.1.0","1.0","v0.6.2","v0.6.1","v0.6.0","v0.5.1","v0.5.0","0.5.0","v0.4.0","v0.3.0","v0.2.0","v0.1.2","0.1.2","0-1d63b0ec361e7a38f1339385e8a5a855085532ce","0-4.36.0"],"first_patched_version":"1d63b0ec361e7a38f1339385e8a5a855085532ce","reference_urls":["https://huntr.com/bounties/e1a3e548-e53a-48df-b708-9ee62140963c","https://huntr.com/bounties/e1a3e548-e53a-48df-b708-9ee62140963c","https://huntr.com/bounties/e1a3e548-e53a-48df-b708-9ee62140963c","https://github.com/huggingface/transformers/commit/1d63b0ec361e7a38f1339385e8a5a855085532ce","https://github.com/advisories/GHSA-v68g-wm8c-6x7j"]},{"id":"GHSA-3863-2447-669p","aliases":["CVE-2023-6730","PYSEC-2023-300"],"summary":"transformers has a Deserialization of Untrusted Data vulnerability","published":"2023-12-19T15:30:30Z","modified":"2024-11-22T21:07:59.234452Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.4.0","4.4.1","4.4.2","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.36.0"],"first_patched_version":"4.36.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-6730","https://github.com/huggingface/transformers/commit/1d63b0ec361e7a38f1339385e8a5a855085532ce","https://github.com/huggingface/transformers","https://github.com/pypa/advisory-database/tree/main/vulns/transformers/PYSEC-2023-300.yaml","https://huntr.com/bounties/423611ee-7a2a-442a-babb-3ed2f8385c16"]},{"id":"PYSEC-2023-300","aliases":["CVE-2023-6730","GHSA-3863-2447-669p"],"summary":"","published":"2023-12-19T13:15:00Z","modified":"2026-06-10T17:02:48.312827815Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.30.0","4.30.1","4.30.2","4.31.0","4.32.0","4.32.1","4.33.0","4.33.1","4.33.2","4.33.3","4.34.0","4.34.1","4.35.0","4.35.1","4.35.2","4.4.0","4.4.1","4.4.2","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","v4.33.1","v4.16.0","v4.15.0","v4.14.0","v4.13.0","v4.12.0","v4.11.0","v4.10.0","v4.9.0","v4.8.0","v4.7.0","v4.6.0","v4.5.0","v4.4.0","v4.3.0.rc1","4.3.0.rc1","v4.2.0","v4.1.1","v4.1.0","v3.5.0","v3.4.0","v3.3.1","v3.3.0","v3.2.0","v3.1.0","v3.0.2","v3.0.1","v3.0.0","v2.11.0","v2.10.0","v2.9.1","v2.9.0","v2.8.0","v2.7.0","v2.6.0","v2.5.1","v2.5.0","v2.4.1","v2.4.0","v2.3.0","v2.2.2","v2.2.1","v2.2.0","v2.1.1","v2.1.0","v2.0.0","1.2.0","1.1.0","1.0","v0.6.2","v0.6.1","v0.6.0","v0.5.1","v0.5.0","0.5.0","v0.4.0","v0.3.0","v0.2.0","v0.1.2","0.1.2","0-1d63b0ec361e7a38f1339385e8a5a855085532ce","0-4.36.0"],"first_patched_version":"1d63b0ec361e7a38f1339385e8a5a855085532ce","reference_urls":["https://huntr.com/bounties/423611ee-7a2a-442a-babb-3ed2f8385c16","https://github.com/huggingface/transformers/commit/1d63b0ec361e7a38f1339385e8a5a855085532ce","https://github.com/advisories/GHSA-3863-2447-669p"]},{"id":"GHSA-282v-666c-3fvg","aliases":["CVE-2023-2800","PYSEC-2023-299"],"summary":"transformers has Insecure Temporary File","published":"2023-05-18T18:30:35Z","modified":"2024-11-22T20:46:31.605562Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.4.0","4.4.1","4.4.2","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","0-4.30.0"],"first_patched_version":"4.30.0","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2023-2800","https://github.com/huggingface/transformers/pull/23372","https://github.com/huggingface/transformers/commit/80ca92470938bbcc348e2d9cf4734c7c25cb1c43","https://github.com/huggingface/transformers","https://github.com/pypa/advisory-database/tree/main/vulns/transformers/PYSEC-2023-299.yaml","https://huntr.dev/bounties/a3867b4e-6701-4418-8c20-3c6e7084a44a"]},{"id":"PYSEC-2023-299","aliases":["CVE-2023-2800","GHSA-282v-666c-3fvg"],"summary":"","published":"2023-05-18T17:15:00Z","modified":"2026-06-10T17:02:48.310585754Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1","2.0.0","2.1.0","2.1.1","2.10.0","2.11.0","2.2.0","2.2.1","2.2.2","2.3.0","2.4.0","2.4.1","2.5.0","2.5.1","2.6.0","2.7.0","2.8.0","2.9.0","2.9.1","3.0.0","3.0.1","3.0.2","3.1.0","3.2.0","3.3.0","3.3.1","3.4.0","3.5.0","3.5.1","4.0.0","4.0.0rc1","4.0.1","4.1.0","4.1.1","4.10.0","4.10.1","4.10.2","4.10.3","4.11.0","4.11.1","4.11.2","4.11.3","4.12.0","4.12.1","4.12.2","4.12.3","4.12.4","4.12.5","4.13.0","4.14.0","4.14.1","4.15.0","4.16.0","4.16.1","4.16.2","4.17.0","4.18.0","4.19.0","4.19.1","4.19.2","4.19.3","4.19.4","4.2.0","4.2.1","4.2.2","4.20.0","4.20.1","4.21.0","4.21.1","4.21.2","4.21.3","4.22.0","4.22.1","4.22.2","4.23.0","4.23.1","4.24.0","4.25.0","4.25.1","4.26.0","4.26.1","4.27.0","4.27.1","4.27.2","4.27.3","4.27.4","4.28.0","4.28.1","4.29.0","4.29.1","4.29.2","4.3.0","4.3.0rc1","4.3.1","4.3.2","4.3.3","4.4.0","4.4.1","4.4.2","4.5.0","4.5.1","4.6.0","4.6.1","4.7.0","4.8.0","4.8.1","4.8.2","4.9.0","4.9.1","4.9.2","v4.16.0","v4.15.0","v4.14.0","v4.13.0","v4.12.0","v4.11.0","v4.10.0","v4.9.0","v4.8.0","v4.7.0","v4.6.0","v4.5.0","v4.4.0","v4.3.0.rc1","4.3.0.rc1","v4.2.0","v4.1.1","v4.1.0","v3.5.0","v3.4.0","v3.3.1","v3.3.0","v3.2.0","v3.1.0","v3.0.2","v3.0.1","v3.0.0","v2.11.0","v2.10.0","v2.9.1","v2.9.0","v2.8.0","v2.7.0","v2.6.0","v2.5.1","v2.5.0","v2.4.1","v2.4.0","v2.3.0","v2.2.2","v2.2.1","v2.2.0","v2.1.1","v2.1.0","v2.0.0","1.2.0","1.1.0","1.0","v0.6.2","v0.6.1","v0.6.0","v0.5.1","v0.5.0","0.5.0","v0.4.0","v0.3.0","v0.2.0","v0.1.2","0.1.2","0-80ca92470938bbcc348e2d9cf4734c7c25cb1c43","0-4.30.0"],"first_patched_version":"80ca92470938bbcc348e2d9cf4734c7c25cb1c43","reference_urls":["https://github.com/huggingface/transformers/commit/80ca92470938bbcc348e2d9cf4734c7c25cb1c43","https://huntr.dev/bounties/a3867b4e-6701-4418-8c20-3c6e7084a44a","https://huntr.dev/bounties/a3867b4e-6701-4418-8c20-3c6e7084a44a","https://huntr.dev/bounties/a3867b4e-6701-4418-8c20-3c6e7084a44a","https://github.com/advisories/GHSA-282v-666c-3fvg"]}]},{"package":"diffusers","ecosystem":"PyPI","category":"inference","description":"HuggingFace Diffusers library","homepage":null,"fetched_at":"2026-07-03T05:45:57.750Z","advisories_count":4,"open_count":4,"withdrawn_count":0,"latest_advisory_id":"GHSA-7wx4-6vff-v64p","latest_published":"2026-05-20T15:31:33Z","advisories":[{"id":"GHSA-7wx4-6vff-v64p","aliases":["CVE-2026-45804"],"summary":"Diffusers: TOCTOU Trust Remote Code Bypass","published":"2026-05-20T15:31:33Z","modified":"2026-06-08T20:44:20.104986315Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.2","0.0.3","0.0.4","0.1.0","0.1.1","0.1.2","0.1.3","0.10.0","0.10.1","0.10.2","0.11.0","0.11.1","0.12.0","0.12.1","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.16.0","0.16.1","0.17.0","0.17.1","0.18.0","0.18.1","0.18.2","0.19.0","0.19.1","0.19.2","0.19.3","0.2.0","0.2.1","0.2.2","0.2.3","0.2.4","0.20.0","0.20.1","0.20.2","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.22.1","0.22.2","0.22.3","0.23.0","0.23.1","0.24.0","0.25.0","0.25.1","0.26.0","0.26.1","0.26.2","0.26.3","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.28.2","0.29.0","0.29.1","0.29.2","0.3.0","0.30.0","0.30.1","0.30.2","0.30.3","0.31.0","0.32.0","0.32.1","0.32.2","0.33.0","0.33.1","0.34.0","0.35.0","0.35.1","0.35.2","0.36.0","0.37.0","0.37.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.6.0","0.7.0","0.7.1","0.7.2","0.8.0","0.8.1","0.9.0","0-0.38.0"],"first_patched_version":"0.38.0","reference_urls":["https://github.com/huggingface/diffusers/security/advisories/GHSA-7wx4-6vff-v64p","https://github.com/huggingface/diffusers"]},{"id":"PYSEC-2026-41","aliases":["CVE-2026-44827","GHSA-j7w6-vpvq-j3gm"],"summary":"","published":"2026-05-14T17:16:23.500Z","modified":"2026-05-20T09:18:56.729581Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.2","0.0.3","0.0.4","0.1.0","0.1.1","0.1.2","0.1.3","0.10.0","0.10.1","0.10.2","0.11.0","0.11.1","0.12.0","0.12.1","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.16.0","0.16.1","0.17.0","0.17.1","0.18.0","0.18.1","0.18.2","0.19.0","0.19.1","0.19.2","0.19.3","0.2.0","0.2.1","0.2.2","0.2.3","0.2.4","0.20.0","0.20.1","0.20.2","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.22.1","0.22.2","0.22.3","0.23.0","0.23.1","0.24.0","0.25.0","0.25.1","0.26.0","0.26.1","0.26.2","0.26.3","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.28.2","0.29.0","0.29.1","0.29.2","0.3.0","0.30.0","0.30.1","0.30.2","0.30.3","0.31.0","0.32.0","0.32.1","0.32.2","0.33.0","0.33.1","0.34.0","0.35.0","0.35.1","0.35.2","0.36.0","0.37.0","0.37.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.6.0","0.7.0","0.7.1","0.7.2","0.8.0","0.8.1","0.9.0","0-0.38.0"],"first_patched_version":"0.38.0","reference_urls":["https://github.com/huggingface/diffusers/security/advisories/GHSA-j7w6-vpvq-j3gm"]},{"id":"PYSEC-2026-40","aliases":["CVE-2026-44513","GHSA-98h9-4798-4q5v"],"summary":"","published":"2026-05-14T17:16:22.903Z","modified":"2026-05-20T09:18:56.669156Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.2","0.0.3","0.0.4","0.1.0","0.1.1","0.1.2","0.1.3","0.10.0","0.10.1","0.10.2","0.11.0","0.11.1","0.12.0","0.12.1","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.16.0","0.16.1","0.17.0","0.17.1","0.18.0","0.18.1","0.18.2","0.19.0","0.19.1","0.19.2","0.19.3","0.2.0","0.2.1","0.2.2","0.2.3","0.2.4","0.20.0","0.20.1","0.20.2","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.22.1","0.22.2","0.22.3","0.23.0","0.23.1","0.24.0","0.25.0","0.25.1","0.26.0","0.26.1","0.26.2","0.26.3","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.28.2","0.29.0","0.29.1","0.29.2","0.3.0","0.30.0","0.30.1","0.30.2","0.30.3","0.31.0","0.32.0","0.32.1","0.32.2","0.33.0","0.33.1","0.34.0","0.35.0","0.35.1","0.35.2","0.36.0","0.37.0","0.37.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.6.0","0.7.0","0.7.1","0.7.2","0.8.0","0.8.1","0.9.0","0-0.38.0"],"first_patched_version":"0.38.0","reference_urls":["https://github.com/huggingface/diffusers/security/advisories/GHSA-98h9-4798-4q5v"]},{"id":"GHSA-98h9-4798-4q5v","aliases":["CVE-2026-44513","PYSEC-2026-40"],"summary":"Diffusers has a `trust_remote_code` bypass via `custom_pipeline` and local custom components","published":"2026-05-07T05:31:17Z","modified":"2026-06-05T18:00:15.312535680Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.0.2","0.0.3","0.0.4","0.1.0","0.1.1","0.1.2","0.1.3","0.10.0","0.10.1","0.10.2","0.11.0","0.11.1","0.12.0","0.12.1","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.16.0","0.16.1","0.17.0","0.17.1","0.18.0","0.18.1","0.18.2","0.19.0","0.19.1","0.19.2","0.19.3","0.2.0","0.2.1","0.2.2","0.2.3","0.2.4","0.20.0","0.20.1","0.20.2","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.22.1","0.22.2","0.22.3","0.23.0","0.23.1","0.24.0","0.25.0","0.25.1","0.26.0","0.26.1","0.26.2","0.26.3","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.28.2","0.29.0","0.29.1","0.29.2","0.3.0","0.30.0","0.30.1","0.30.2","0.30.3","0.31.0","0.32.0","0.32.1","0.32.2","0.33.0","0.33.1","0.34.0","0.35.0","0.35.1","0.35.2","0.36.0","0.37.0","0.37.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.6.0","0.7.0","0.7.1","0.7.2","0.8.0","0.8.1","0.9.0","0-0.38.0"],"first_patched_version":"0.38.0","reference_urls":["https://github.com/huggingface/diffusers/security/advisories/GHSA-98h9-4798-4q5v","https://nvd.nist.gov/vuln/detail/CVE-2026-44513","https://github.com/huggingface/diffusers/issues/13446","https://github.com/huggingface/diffusers/pull/13448","https://github.com/huggingface/diffusers/commit/a37f6f8394ac2a7ee8360c3abea811efe54512b1","https://github.com/huggingface/diffusers","https://github.com/huggingface/diffusers/releases/tag/v0.38.0","https://github.com/pypa/advisory-database/tree/main/vulns/diffusers/PYSEC-2026-40.yaml"]}]},{"package":"sentence-transformers","ecosystem":"PyPI","category":"inference","description":"Sentence-Transformers embedding library","homepage":null,"fetched_at":"2026-07-03T05:45:57.540Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"vllm","ecosystem":"PyPI","category":"inference","description":"High-throughput LLM serving","homepage":null,"fetched_at":"2026-07-03T05:45:59.133Z","advisories_count":75,"open_count":75,"withdrawn_count":0,"latest_advisory_id":"PYSEC-2026-565","latest_published":"2026-06-29T11:50:51.569348Z","advisories":[{"id":"PYSEC-2026-565","aliases":["CVE-2026-22778","GHSA-4r2x-xpjr-7cvv"],"summary":"vLLM has RCE In Video Processing","published":"2026-06-29T11:50:51.569348Z","modified":"2026-07-01T20:23:11.278808Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.8.3-0.14.1"],"first_patched_version":"0.14.1","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-4r2x-xpjr-7cvv","https://nvd.nist.gov/vuln/detail/CVE-2026-22778","https://github.com/vllm-project/vllm/pull/31987","https://github.com/vllm-project/vllm/pull/32319","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/releases/tag/v0.14.1","https://pypi.org/project/vllm","https://github.com/advisories/GHSA-4r2x-xpjr-7cvv"]},{"id":"PYSEC-2026-567","aliases":["CVE-2025-47277","GHSA-hjq4-87xh-g4fv"],"summary":"vLLM Allows Remote Code Execution via PyNcclPipe Communication Service","published":"2026-06-29T11:50:35.995027Z","modified":"2026-07-01T20:23:11.300418Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.6.5-0.8.5"],"first_patched_version":"0.8.5","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-hjq4-87xh-g4fv","https://nvd.nist.gov/vuln/detail/CVE-2025-47277","https://github.com/vllm-project/vllm/pull/15988","https://github.com/vllm-project/vllm/commit/0d6e187e88874c39cda7409cf673f9e6546893e7","https://docs.vllm.ai/en/latest/deployment/security.html","https://github.com/vllm-project/vllm","https://pypi.org/project/vllm","https://github.com/advisories/GHSA-hjq4-87xh-g4fv"]},{"id":"PYSEC-2026-566","aliases":["CVE-2024-11041","GHSA-5vqr-wprc-cpp7"],"summary":"vLLM Deserialization of Untrusted Data vulnerability","published":"2026-06-29T11:50:35.177170Z","modified":"2026-07-01T20:23:11.291562Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0-0.6.2"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-11041","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/blob/7193774b1ff8603ad5bf4598e5efba0d9a39b436/vllm/distributed/device_communicators/shm_broadcast.py#L441-L443","https://huntr.com/bounties/00136195-11e0-4ad0-98d5-72db066e867f","https://pypi.org/project/vllm","https://github.com/advisories/GHSA-5vqr-wprc-cpp7"]},{"id":"PYSEC-2026-568","aliases":["CVE-2024-9052","GHSA-pgr7-mhp5-fgjp"],"summary":"vLLM deserialization vulnerability in vllm.distributed.GroupCoordinator.recv_object","published":"2026-06-29T11:50:34.951406Z","modified":"2026-07-01T20:23:11.311128Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0-0.8.1"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-9052","https://github.com/github/advisory-database/pull/5444","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/blob/32e7db25365415841ebc7c4215851743fbb1bad1/vllm/distributed/parallel_state.py#L480","https://github.com/vllm-project/vllm/blob/v0.8.1/vllm/distributed/parallel_state.py#L457","https://huntr.com/bounties/ea75728f-4efe-4a3d-9f53-33f2c908e9f8","https://pypi.org/project/vllm","https://github.com/advisories/GHSA-pgr7-mhp5-fgjp"]},{"id":"PYSEC-2026-227","aliases":["CVE-2026-54232","GHSA-jrf6-vqxq-pjv2"],"summary":"","published":"2026-06-22T23:16:30.873Z","modified":"2026-06-26T00:00:06.054142968Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.20.0","0.20.1","0.20.2","0.21.0","0.22.0","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.22.1"],"first_patched_version":"0.22.1","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-jrf6-vqxq-pjv2"]},{"id":"PYSEC-2026-226","aliases":["CVE-2026-48746","GHSA-94f4-hr76-p5j6"],"summary":"","published":"2026-06-22T23:16:30.490Z","modified":"2026-06-26T00:00:06.010479511Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.20.0","0.20.1","0.20.2","0.21.0","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.3.0-0.22.0"],"first_patched_version":"0.22.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-94f4-hr76-p5j6","https://x41-dsec.de/lab/advisories/x41-2026-002-starlette","https://github.com/vllm-project/vllm/pull/43426"]},{"id":"PYSEC-2026-250","aliases":["CVE-2026-56340","GHSA-mcmc-2m55-j8jj"],"summary":"","published":"2026-06-20T19:16:23.567Z","modified":"2026-06-27T11:15:06.806708965Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.10.2-0.13.0"],"first_patched_version":"0.13.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-mcmc-2m55-j8jj","https://www.vulncheck.com/advisories/vllm-denial-of-service-via-unvalidated-multimodal-embeddings"]},{"id":"GHSA-6pr9-rp53-2pmc","aliases":["CVE-2026-54233"],"summary":"vLLM: OOM Denial of Service via Audio Decompression Bomb","published":"2026-06-17T14:06:22Z","modified":"2026-07-01T21:59:20.247311438Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.20.0","0.20.1","0.20.2","0.21.0","0.22.0","0.22.1","0.23.0","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.23.0"],"first_patched_version":null,"reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-6pr9-rp53-2pmc","https://github.com/vllm-project/vllm/pull/44970","https://github.com/vllm-project/vllm/commit/1b1359c33269446f13c05da9a90c25174cbea590","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/releases/tag/v0.23.1rc0"]},{"id":"GHSA-hgg8-fqqc-vfmw","aliases":["CVE-2026-54236"],"summary":"vLLM: incomplete CVE-2026-22778 fix leaks PIL repr addresses via Anthropic router","published":"2026-06-17T14:04:09Z","modified":"2026-07-01T21:59:21.011184507Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.20.0","0.20.1","0.20.2","0.21.0","0.22.0","0.22.1","0.23.0","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.23.0"],"first_patched_version":null,"reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-hgg8-fqqc-vfmw","https://github.com/vllm-project/vllm/pull/45119","https://github.com/vllm-project/vllm/commit/94923629729381d7f7c9efde72071a2441f7fd82","https://github.com/vllm-project/vllm"]},{"id":"GHSA-5jv2-g5wq-cmr4","aliases":["CVE-2026-53923"],"summary":"vLLM: GGUF dequantize kernel int truncation exposes uninitialized GPU memory in multi-tenant serving","published":"2026-06-17T14:03:11Z","modified":"2026-07-01T21:59:20.785012324Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.20.0","0.20.1","0.20.2","0.21.0","0.22.0","0.22.1","0.23.0","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.5.5-0.23.0"],"first_patched_version":null,"reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-5jv2-g5wq-cmr4","https://github.com/vllm-project/vllm/pull/44971","https://github.com/vllm-project/vllm/commit/f219788f91952827132fa4fdf916427cd20d225e","https://github.com/vllm-project/vllm"]},{"id":"GHSA-8jr5-v98p-w75m","aliases":["CVE-2026-12491"],"summary":"vLLM: image EXIF Rotation & PNG tRNS Transparency Not Normalized, Causing Mismatch Between Model Input and Expectations","published":"2026-06-17T14:02:42Z","modified":"2026-07-01T21:59:20.545507825Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.20.0","0.20.1","0.20.2","0.21.0","0.22.0","0.22.1","0.23.0","0.11.0-0.23.0"],"first_patched_version":null,"reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-8jr5-v98p-w75m","https://nvd.nist.gov/vuln/detail/CVE-2026-12491","https://github.com/vllm-project/vllm/pull/44974","https://github.com/vllm-project/vllm/commit/cf1c90672404548aa3bc51f92c4745576a65ee26","https://access.redhat.com/security/cve/CVE-2026-12491","https://bugzilla.redhat.com/show_bug.cgi?id=2489786","https://github.com/vllm-project/vllm"]},{"id":"GHSA-7h4p-rffg-7823","aliases":["CVE-2026-54235"],"summary":"vLLM: temperature=NaN and temperature=Infinity bypass validation and propagate to GPU kernels","published":"2026-06-17T14:02:22Z","modified":"2026-07-01T21:59:20.715031842Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.20.0","0.20.1","0.20.2","0.21.0","0.22.0","0.22.1","0.23.0","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.23.0"],"first_patched_version":null,"reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-7h4p-rffg-7823","https://github.com/vllm-project/vllm/pull/45116","https://github.com/vllm-project/vllm/commit/d598d239737cfa37bcfcb98886ec3f3557fc7198","https://github.com/vllm-project/vllm"]},{"id":"GHSA-94f4-hr76-p5j6","aliases":["CVE-2026-48746","PYSEC-2026-226"],"summary":"vLLM: OpenAI auth bypass","published":"2026-06-16T17:36:41Z","modified":"2026-06-26T00:11:04.367175685Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.20.0","0.20.1","0.20.2","0.21.0","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.3.0-0.22.0"],"first_patched_version":"0.22.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-94f4-hr76-p5j6","https://github.com/vllm-project/vllm/pull/43426","https://github.com/vllm-project/vllm","https://x41-dsec.de/lab/advisories/x41-2026-002-starlette"]},{"id":"GHSA-q8gq-377p-jq3r","aliases":["CVE-2026-41523"],"summary":"vLLM: Security Check Bypass via assert Statement in Activation Function Loading Allows Arbitrary Code Execution","published":"2026-06-16T17:34:49Z","modified":"2026-06-16T17:45:35.898028327Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.20.0","0.20.1","0.20.2","0.21.0","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.22.0"],"first_patched_version":"0.22.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-q8gq-377p-jq3r","https://github.com/vllm-project/vllm/commit/b3c7ffcab82c2439726f8cb213800f6f38c023d3","https://github.com/vllm-project/vllm","https://huntr.com/bounties/dcb05b04-e625-41e7-adbc-bbae0cc2d64c"]},{"id":"GHSA-3ww4-5jv9-j5gm","aliases":["CVE-2026-47155"],"summary":"vLLM's Artifact Pin Decay allows pinned deployments to load unpinned code, weights, and processors","published":"2026-06-10T17:11:38Z","modified":"2026-06-10T17:15:06.942846806Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.20.0","0.20.1","0.20.2","0.21.0","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.22.0"],"first_patched_version":"0.22.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-3ww4-5jv9-j5gm","https://github.com/vllm-project/vllm"]},{"id":"GHSA-98f3-hwg4-4rf7","aliases":["CVE-2026-9540"],"summary":"vllm has Improper Resource Shutdown or Release ","published":"2026-05-26T15:32:10Z","modified":"2026-06-30T18:00:17.492762476Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.19.0"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2026-9540","https://github.com/vllm-project/vllm/issues/37343","https://github.com/vllm-project/vllm/pull/37594","https://github.com/vllm-project/vllm","https://ingero.io/debugging-vllm-latency-minimax-ollama-mcp","https://vuldb.com/submit/814645","https://vuldb.com/vuln/365601","https://vuldb.com/vuln/365601/cti"]},{"id":"PYSEC-2026-145","aliases":["CVE-2026-44223","GHSA-83vm-p52w-f9pw"],"summary":"","published":"2026-05-12T20:16:43.293Z","modified":"2026-05-20T09:19:21.596358Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.18.0","0.18.1","0.19.0","0.19.1","0.18.0-0.20.0"],"first_patched_version":"0.20.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-83vm-p52w-f9pw","https://github.com/vllm-project/vllm/pull/38610"]},{"id":"GHSA-83vm-p52w-f9pw","aliases":["CVE-2026-44223","PYSEC-2026-145"],"summary":"vLLM: extract_hidden_states speculative decoding crashes server on any request with penalty parameters","published":"2026-05-06T21:45:51Z","modified":"2026-06-08T20:00:11.373937446Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.18.0","0.18.1","0.19.0","0.19.1","0.18.0-0.20.0"],"first_patched_version":"0.20.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-83vm-p52w-f9pw","https://nvd.nist.gov/vuln/detail/CVE-2026-44223","https://github.com/vllm-project/vllm/pull/38610","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2026-145.yaml","https://github.com/vllm-project/vllm"]},{"id":"GHSA-hpv8-x276-m59f","aliases":["CVE-2026-44222"],"summary":"vLLM Vulnerable to Remote DoS via Special-Token Placeholders","published":"2026-05-05T22:21:41Z","modified":"2026-06-01T17:14:13.011062317Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.19.1","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.6.1-0.20.0"],"first_patched_version":"0.20.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-hpv8-x276-m59f","https://nvd.nist.gov/vuln/detail/CVE-2026-44222","https://github.com/vllm-project/vllm/issues/32656","https://github.com/vllm-project/vllm"]},{"id":"GHSA-x368-4g9h-fvv4","aliases":["CVE-2026-7141"],"summary":"vLLM makes Use of Uninitialized Resource","published":"2026-04-27T18:32:09Z","modified":"2026-06-01T17:14:13.082164200Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.19.1"],"first_patched_version":"0.19.1","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2026-7141","https://github.com/vllm-project/vllm/issues/39146","https://github.com/vllm-project/vllm/issues/39146#issue-4215090365","https://github.com/vllm-project/vllm/pull/39283","https://github.com/AjAnubolu/vllm/commit/1ad67864c0c20f167929e64c875f5c28e1aad9fd","https://vuldb.com/submit/801297","https://vuldb.com/vuln/359740","https://vuldb.com/vuln/359740/cti"]},{"id":"PYSEC-2026-144","aliases":["CVE-2026-34755","GHSA-pq5c-rjhq-qp7p"],"summary":"","published":"2026-04-06T16:16:36.463Z","modified":"2026-05-20T09:19:21.539785Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.7.0-0.19.0"],"first_patched_version":"0.19.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-pq5c-rjhq-qp7p"]},{"id":"GHSA-pq5c-rjhq-qp7p","aliases":["CVE-2026-34755","PYSEC-2026-144"],"summary":"vLLM: Denial of Service via Unbounded Frame Count in video/jpeg Base64 Processing","published":"2026-04-03T21:51:35Z","modified":"2026-06-08T20:00:10.820407051Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.7.0-0.19.0"],"first_patched_version":"0.19.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-pq5c-rjhq-qp7p","https://nvd.nist.gov/vuln/detail/CVE-2026-34755","https://github.com/vllm-project/vllm/pull/38636","https://github.com/vllm-project/vllm/commit/58ee61422169ce17e08248f8efa1e9df434fe395","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2026-144.yaml","https://github.com/vllm-project/vllm"]},{"id":"GHSA-pf3h-qjgv-vcpr","aliases":["CVE-2026-34753"],"summary":"vLLM: Server-Side Request Forgery (SSRF) in `download_bytes_from_url `","published":"2026-04-03T21:51:00Z","modified":"2026-04-10T02:14:19.184937664Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.16.0-0.19.0"],"first_patched_version":"0.19.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-pf3h-qjgv-vcpr","https://nvd.nist.gov/vuln/detail/CVE-2026-34753","https://github.com/vllm-project/vllm/pull/38482","https://github.com/vllm-project/vllm/commit/57861ae48d3493fa48b4d7d830b7ec9f995783e7","https://github.com/vllm-project/vllm"]},{"id":"GHSA-3mwp-wvh9-7528","aliases":["CVE-2026-34756"],"summary":"vLLM: Unauthenticated OOM Denial of Service via Unbounded `n` Parameter in OpenAI API Server","published":"2026-04-03T15:35:48Z","modified":"2026-04-10T02:14:19.618630513Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.18.0","0.18.1","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.1.0-0.19.0"],"first_patched_version":"0.19.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-3mwp-wvh9-7528","https://nvd.nist.gov/vuln/detail/CVE-2026-34756","https://github.com/vllm-project/vllm/pull/37952","https://github.com/vllm-project/vllm/commit/b111f8a61f100fdca08706f41f29ef3548de7380","https://github.com/vllm-project/vllm"]},{"id":"GHSA-7972-pg2x-xr59","aliases":["CVE-2026-27893"],"summary":"vLLM has Hardcoded Trust Override in Model Files Enables RCE Despite Explicit User Opt-Out","published":"2026-03-27T15:27:20Z","modified":"2026-03-30T20:29:19.856667Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.14.1","0.15.0","0.15.1","0.16.0","0.17.0","0.17.1","0.10.1-0.18.0"],"first_patched_version":"0.18.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-7972-pg2x-xr59","https://nvd.nist.gov/vuln/detail/CVE-2026-27893","https://github.com/vllm-project/vllm/pull/36192","https://github.com/vllm-project/vllm/commit/00bd08edeee5dd4d4c13277c0114a464011acf72","https://github.com/vllm-project/vllm"]},{"id":"GHSA-v359-jj2v-j536","aliases":["CVE-2026-25960"],"summary":"vLLM has SSRF Protection Bypass","published":"2026-03-09T19:55:32Z","modified":"2026-03-16T03:04:32.723157Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.15.1","0.16.0","0.15.1-0.17.0"],"first_patched_version":"0.17.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-qh4c-xf7m-gxfc","https://github.com/vllm-project/vllm/security/advisories/GHSA-v359-jj2v-j536","https://nvd.nist.gov/vuln/detail/CVE-2026-25960","https://github.com/vllm-project/vllm/pull/34743","https://github.com/vllm-project/vllm/commit/6f3b2047abd4a748e3db4a68543f8221358002c0","https://github.com/vllm-project/vllm"]},{"id":"GHSA-4r2x-xpjr-7cvv","aliases":["CVE-2026-22778","PYSEC-2026-565"],"summary":"vLLM has RCE In Video Processing","published":"2026-02-02T17:43:45Z","modified":"2026-06-29T12:26:35.594798428Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.8.3-0.14.1"],"first_patched_version":"0.14.1","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-4r2x-xpjr-7cvv","https://nvd.nist.gov/vuln/detail/CVE-2026-22778","https://github.com/vllm-project/vllm/pull/31987","https://github.com/vllm-project/vllm/pull/32319","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/releases/tag/v0.14.1"]},{"id":"GHSA-qh4c-xf7m-gxfc","aliases":["CVE-2026-24779"],"summary":"vLLM vulnerable to Server-Side Request Forgery (SSRF) through MediaConnector","published":"2026-01-28T16:14:28Z","modified":"2026-03-27T00:59:19.746037Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.14.0","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.14.1"],"first_patched_version":"0.14.1","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-qh4c-xf7m-gxfc","https://nvd.nist.gov/vuln/detail/CVE-2026-24779","https://github.com/vllm-project/vllm/pull/32746","https://github.com/vllm-project/vllm/commit/f46d576c54fb8aeec5fc70560e850bed38ef17d7","https://github.com/vllm-project/vllm"]},{"id":"GHSA-2pc9-4j83-qjmr","aliases":["CVE-2026-22807"],"summary":"vLLM affected by RCE via auto_map dynamic module loading during model initialization","published":"2026-01-21T16:12:54Z","modified":"2026-02-04T04:25:14.665185Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.13.0","0.10.1-0.14.0"],"first_patched_version":"0.14.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-2pc9-4j83-qjmr","https://nvd.nist.gov/vuln/detail/CVE-2026-22807","https://github.com/vllm-project/vllm/pull/32194","https://github.com/vllm-project/vllm/commit/78d13ea9de4b1ce5e4d8a5af9738fea71fb024e5","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/releases/tag/v0.14.0"]},{"id":"GHSA-grg2-63fw-f2qr","aliases":["CVE-2026-22773","PYSEC-2026-143"],"summary":"vLLM is vulnerable to DoS in Idefics3 vision models via image payload with ambiguous dimensions","published":"2026-01-13T18:44:15Z","modified":"2026-06-08T20:00:15.842086505Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.6.4-0.12.0"],"first_patched_version":"0.12.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-grg2-63fw-f2qr","https://nvd.nist.gov/vuln/detail/CVE-2026-22773","https://github.com/vllm-project/vllm/pull/29881","https://github.com/vllm-project/vllm/commit/0ec84221718d920c3f46da879cc354f94b8fb59e","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2026-143.yaml","https://github.com/vllm-project/vllm"]},{"id":"PYSEC-2026-143","aliases":["CVE-2026-22773","GHSA-grg2-63fw-f2qr"],"summary":"","published":"2026-01-10T07:16:03.527Z","modified":"2026-05-20T09:19:21.486475Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.11.1","0.11.2","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.6.4-0.12.0"],"first_patched_version":"0.12.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-grg2-63fw-f2qr"]},{"id":"GHSA-mcmc-2m55-j8jj","aliases":["CVE-2026-56340","PYSEC-2026-250"],"summary":"vLLM introduced enhanced protection for CVE-2025-62164","published":"2026-01-08T21:47:43Z","modified":"2026-06-27T11:26:32.894007747Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.2","0.11.0","0.11.1","0.11.2","0.12.0","0.10.2-0.13.0"],"first_patched_version":"0.13.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-mcmc-2m55-j8jj","https://github.com/vllm-project/vllm/pull/30649","https://github.com/vllm-project/vllm"]},{"id":"GHSA-8fr4-5q9j-m8gm","aliases":["CVE-2025-66448"],"summary":"vLLM vulnerable to remote code execution via transformers_utils/get_config","published":"2025-12-02T17:34:16Z","modified":"2025-12-02T17:56:37.658333Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.11.1"],"first_patched_version":"0.11.1","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-8fr4-5q9j-m8gm","https://nvd.nist.gov/vuln/detail/CVE-2025-66448","https://github.com/vllm-project/vllm/pull/28126","https://github.com/vllm-project/vllm/commit/ffb08379d8870a1a81ba82b72797f196838d0c86","https://github.com/vllm-project/vllm"]},{"id":"GHSA-69j4-grxj-j64p","aliases":["CVE-2025-62426"],"summary":"vLLM vulnerable to DoS via large Chat Completion or Tokenization requests with specially crafted `chat_template_kwargs`","published":"2025-11-20T21:26:24Z","modified":"2026-02-04T03:20:29.530734Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.5.5-0.11.1"],"first_patched_version":"0.11.1","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-69j4-grxj-j64p","https://nvd.nist.gov/vuln/detail/CVE-2025-62426","https://github.com/vllm-project/vllm/pull/27205","https://github.com/vllm-project/vllm/commit/3ada34f9cb4d1af763fdfa3b481862a93eb6bd2b","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/blob/2a6dc67eb520ddb9c4138d8b35ed6fe6226997fb/vllm/entrypoints/chat_utils.py#L1602-L1610","https://github.com/vllm-project/vllm/blob/2a6dc67eb520ddb9c4138d8b35ed6fe6226997fb/vllm/entrypoints/openai/serving_engine.py#L809-L814"]},{"id":"GHSA-pmqf-x6x8-p7qw","aliases":["CVE-2025-62372"],"summary":"vLLM vulnerable to DoS with incorrect shape of multimodal embedding inputs","published":"2025-11-20T21:23:29Z","modified":"2026-02-04T02:28:48.447217Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.11.0","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.5.5-0.11.1"],"first_patched_version":"0.11.1","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-pmqf-x6x8-p7qw","https://nvd.nist.gov/vuln/detail/CVE-2025-62372","https://github.com/vllm-project/vllm/pull/27204","https://github.com/vllm-project/vllm/pull/6613","https://github.com/vllm-project/vllm/commit/58fab50d82838d5014f4a14d991fdb9352c9c84b","https://github.com/vllm-project/vllm"]},{"id":"GHSA-mrw7-hf4f-83pf","aliases":["CVE-2025-62164"],"summary":"vLLM deserialization vulnerability leading to DoS and potential RCE","published":"2025-11-20T20:59:34Z","modified":"2026-02-04T03:01:24.660546Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.2","0.11.0","0.10.2-0.11.1"],"first_patched_version":"0.11.1","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-mrw7-hf4f-83pf","https://nvd.nist.gov/vuln/detail/CVE-2025-62164","https://github.com/vllm-project/vllm/pull/27204","https://github.com/vllm-project/vllm/commit/58fab50d82838d5014f4a14d991fdb9352c9c84b","https://github.com/vllm-project/vllm"]},{"id":"GHSA-3f6c-7fw2-ppm4","aliases":["CVE-2025-6242"],"summary":"vLLM is vulnerable to Server-Side Request Forgery (SSRF) through `MediaConnector` class","published":"2025-10-07T22:14:15Z","modified":"2026-02-04T04:16:15.305272Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.5.0-0.11.0"],"first_patched_version":"0.11.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-3f6c-7fw2-ppm4","https://nvd.nist.gov/vuln/detail/CVE-2025-6242","https://github.com/vllm-project/vllm/commit/9d9a2b77f19f68262d5e469c4e82c0f6365ad72d","https://access.redhat.com/security/cve/CVE-2025-6242","https://bugzilla.redhat.com/show_bug.cgi?id=2373716","https://github.com/vllm-project/vllm"]},{"id":"GHSA-6fvq-23cw-5628","aliases":["CVE-2025-61620"],"summary":"vLLM: Resource-Exhaustion (DoS) through Malicious Jinja Template in OpenAI-Compatible Server","published":"2025-10-07T21:35:22Z","modified":"2026-02-04T02:21:46.165522Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.1.1","0.10.2","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.5.1-0.11.0"],"first_patched_version":"0.11.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-6fvq-23cw-5628","https://github.com/vllm-project/vllm/pull/25794","https://github.com/vllm-project/vllm/commit/7977e5027c2250a4abc1f474c5619c40b4e5682f","https://github.com/vllm-project/vllm"]},{"id":"GHSA-wr9h-g72x-mwhm","aliases":["CVE-2025-59425"],"summary":"vLLM is vulnerable to timing attack at bearer auth","published":"2025-10-07T17:24:47Z","modified":"2026-02-04T02:58:35.387594Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.10.1.1","0.10.2","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0-0.11.0"],"first_patched_version":"0.11.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-wr9h-g72x-mwhm","https://nvd.nist.gov/vuln/detail/CVE-2025-59425","https://github.com/vllm-project/vllm/commit/ee10d7e6ff5875386c7f136ce8b5f525c8fcef48","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/blob/4b946d693e0af15740e9ca9c0e059d5f333b1083/vllm/entrypoints/openai/api_server.py#L1270-L1274","https://github.com/vllm-project/vllm/releases/tag/v0.11.0"]},{"id":"GHSA-79j6-g2m3-jgfw","aliases":["CVE-2025-9141"],"summary":"vLLM has remote code execution vulnerability in the tool call parser for Qwen3-Coder","published":"2025-08-21T14:46:51Z","modified":"2026-02-04T03:55:09.313014Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.10.0","0.10.1","0.10.0-0.10.1.1"],"first_patched_version":"0.10.1.1","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-79j6-g2m3-jgfw","https://github.com/vllm-project/vllm/pull/21396","https://github.com/vllm-project/vllm/commit/4594fc3b281713bd3d7634405b4a1393af40d294","https://github.com/vllm-project/vllm"]},{"id":"GHSA-rxc4-3w6r-4v47","aliases":["CVE-2025-48956"],"summary":"vllm API endpoints vulnerable to Denial of Service Attacks","published":"2025-08-21T14:24:16Z","modified":"2026-02-04T04:34:56.717799Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.10.0","0.10.1","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.1.0-0.10.1.1"],"first_patched_version":"0.10.1.1","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-rxc4-3w6r-4v47","https://nvd.nist.gov/vuln/detail/CVE-2025-48956","https://github.com/vllm-project/vllm/pull/23267","https://github.com/vllm-project/vllm/commit/d8b736f913a59117803d6701521d2e4861701944","https://github.com/vllm-project/vllm"]},{"id":"PYSEC-2025-54","aliases":["CVE-2025-48942","GHSA-6qc9-v4r8-22xg"],"summary":"","published":"2025-05-30T19:15:30Z","modified":"2025-06-26T21:44:31.167227Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0-08bf7840780980c7568c573c70a6a8db94fd45ff","0.8.0-0.9.0"],"first_patched_version":"08bf7840780980c7568c573c70a6a8db94fd45ff","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-6qc9-v4r8-22xg","https://github.com/vllm-project/vllm/commit/08bf7840780980c7568c573c70a6a8db94fd45ff","https://github.com/vllm-project/vllm/pull/17623","https://github.com/vllm-project/vllm/issues/17248"]},{"id":"PYSEC-2025-55","aliases":["CVE-2025-48943","GHSA-9hcf-v7m4-6m2j"],"summary":"","published":"2025-05-30T19:15:30Z","modified":"2025-06-26T21:44:31.927402Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0-08bf7840780980c7568c573c70a6a8db94fd45ff","0.8.0-0.9.0"],"first_patched_version":"08bf7840780980c7568c573c70a6a8db94fd45ff","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-9hcf-v7m4-6m2j","https://github.com/vllm-project/vllm/commit/08bf7840780980c7568c573c70a6a8db94fd45ff","https://github.com/vllm-project/vllm/pull/17623","https://github.com/vllm-project/vllm/issues/17313"]},{"id":"PYSEC-2025-50","aliases":["CVE-2025-48887","GHSA-w6q7-j642-7c25"],"summary":"","published":"2025-05-30T18:15:32Z","modified":"2026-06-10T17:14:19.371824623Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","v0.8.4","v0.8.3rc1","v0.8.2","v0.8.1","v0.8.0rc2","v0.8.0rc1","v0.7.3","v0.7.2","v0.7.1","v0.7.0","v0.6.6.post1","v0.6.6","v0.6.5","v0.6.4.post1","v0.6.4","v0.6.3.post1","v0.6.3","v0.6.2","v0.6.1.post2","v0.6.1.post1","v0.6.1","v0.6.0","v0.5.5","v0.5.4","v0.5.3.post1","v0.5.3","v0.5.2","v0.5.1","v0.5.0.post1","v0.5.0","v0.4.3","v0.4.2","v0.4.1","v0.4.0.post1","v0.4.0","v0.3.3","v0.3.2","v0.3.1","v0.3.0","v0.2.7","v0.2.6","v0.2.5","v0.2.4","v0.2.3","v0.2.2","v0.2.1","v0.2.0","v0.1.7","v0.1.6","v0.1.5","v0.1.4","v0.1.3","v0.1.2","v0.1.1","v0.1.0","submission","0-4fc1bf813ad80172c1db31264beaef7d93fe0601","0.6.4-0.9.0"],"first_patched_version":"4fc1bf813ad80172c1db31264beaef7d93fe0601","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-w6q7-j642-7c25","https://github.com/vllm-project/vllm/security/advisories/GHSA-w6q7-j642-7c25","https://github.com/vllm-project/vllm/commit/4fc1bf813ad80172c1db31264beaef7d93fe0601","https://github.com/vllm-project/vllm/pull/18454","https://github.com/vllm-project/vllm/pull/18454","https://github.com/advisories/GHSA-w6q7-j642-7c25"]},{"id":"PYSEC-2025-43","aliases":["CVE-2025-46722","GHSA-c65p-x677-fgj6"],"summary":"","published":"2025-05-29T17:15:21Z","modified":"2025-05-29T19:42:13.122057Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0-99404f53c72965b41558aceb1bc2380875f5d848","0-0.9.0"],"first_patched_version":"99404f53c72965b41558aceb1bc2380875f5d848","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-c65p-x677-fgj6","https://github.com/vllm-project/vllm/commit/99404f53c72965b41558aceb1bc2380875f5d848","https://github.com/vllm-project/vllm/pull/17378"]},{"id":"PYSEC-2025-53","aliases":["CVE-2025-46570","GHSA-4qjh-9fv9-r85r"],"summary":"","published":"2025-05-29T17:15:21Z","modified":"2025-06-26T21:44:36.898654Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0-77073c77bc2006eb80ea6d5128f076f5e6c6f54f","0-0.9.0"],"first_patched_version":"77073c77bc2006eb80ea6d5128f076f5e6c6f54f","reference_urls":["https://github.com/vllm-project/vllm/pull/17045","https://github.com/vllm-project/vllm/security/advisories/GHSA-4qjh-9fv9-r85r","https://github.com/vllm-project/vllm/commit/77073c77bc2006eb80ea6d5128f076f5e6c6f54f"]},{"id":"GHSA-vrq3-r879-7m65","aliases":["CVE-2025-48944"],"summary":"vLLM Tool Schema allows DoS via Malformed pattern and type Fields","published":"2025-05-28T19:42:32Z","modified":"2026-02-04T02:41:04.308282Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.8.0-0.9.0"],"first_patched_version":"0.9.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-vrq3-r879-7m65","https://nvd.nist.gov/vuln/detail/CVE-2025-48944","https://github.com/vllm-project/vllm/pull/17623","https://github.com/vllm-project/vllm"]},{"id":"GHSA-9hcf-v7m4-6m2j","aliases":["CVE-2025-48943","PYSEC-2025-55"],"summary":"vLLM allows clients to crash the openai server with invalid regex","published":"2025-05-28T19:42:12Z","modified":"2026-02-04T02:59:05.360205Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.8.0-0.9.0"],"first_patched_version":"0.9.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-9hcf-v7m4-6m2j","https://nvd.nist.gov/vuln/detail/CVE-2025-48943","https://github.com/vllm-project/vllm/issues/17313","https://github.com/vllm-project/vllm/pull/17623","https://github.com/vllm-project/vllm/commit/08bf7840780980c7568c573c70a6a8db94fd45ff","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-55.yaml","https://github.com/vllm-project/vllm"]},{"id":"GHSA-6qc9-v4r8-22xg","aliases":["CVE-2025-48942","PYSEC-2025-54"],"summary":"vLLM DOS: Remotely kill vllm over http with invalid JSON schema","published":"2025-05-28T19:41:53Z","modified":"2026-02-04T02:16:15.150519Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.8.0-0.9.0"],"first_patched_version":"0.9.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-6qc9-v4r8-22xg","https://nvd.nist.gov/vuln/detail/CVE-2025-48942","https://github.com/vllm-project/vllm/issues/17248","https://github.com/vllm-project/vllm/pull/17623","https://github.com/vllm-project/vllm/commit/08bf7840780980c7568c573c70a6a8db94fd45ff","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-54.yaml","https://github.com/vllm-project/vllm"]},{"id":"GHSA-c65p-x677-fgj6","aliases":["CVE-2025-46722","PYSEC-2025-43"],"summary":"vLLM has a Weakness in MultiModalHasher Image Hashing Implementation","published":"2025-05-28T18:03:41Z","modified":"2026-02-04T03:00:21.842092Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.7.0-0.9.0"],"first_patched_version":"0.9.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-c65p-x677-fgj6","https://nvd.nist.gov/vuln/detail/CVE-2025-46722","https://github.com/vllm-project/vllm/pull/17378","https://github.com/vllm-project/vllm/commit/99404f53c72965b41558aceb1bc2380875f5d848","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-43.yaml","https://github.com/vllm-project/vllm"]},{"id":"GHSA-4qjh-9fv9-r85r","aliases":["CVE-2025-46570","PYSEC-2025-53"],"summary":"Potential Timing Side-Channel Vulnerability in vLLM’s Chunk-Based Prefix Caching","published":"2025-05-28T18:02:24Z","modified":"2026-02-04T03:48:23.274649Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0-0.9.0"],"first_patched_version":"0.9.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-4qjh-9fv9-r85r","https://nvd.nist.gov/vuln/detail/CVE-2025-46570","https://github.com/vllm-project/vllm/pull/17045","https://github.com/vllm-project/vllm/commit/77073c77bc2006eb80ea6d5128f076f5e6c6f54f","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-53.yaml","https://github.com/vllm-project/vllm"]},{"id":"GHSA-j828-28rj-hfhp","aliases":[],"summary":"vLLM vulnerable to Regular Expression Denial of Service","published":"2025-05-28T17:50:06Z","modified":"2026-02-04T03:40:26.990442Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.6.3-0.9.0"],"first_patched_version":"0.9.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-j828-28rj-hfhp","https://github.com/vllm-project/vllm/pull/18454","https://github.com/vllm-project/vllm/commit/4fc1bf813ad80172c1db31264beaef7d93fe0601","https://github.com/vllm-project/vllm"]},{"id":"GHSA-w6q7-j642-7c25","aliases":["CVE-2025-48887","PYSEC-2025-50"],"summary":"vLLM has a Regular Expression Denial of Service (ReDoS, Exponential Complexity) Vulnerability in `pythonic_tool_parser.py`","published":"2025-05-28T17:49:33Z","modified":"2026-06-10T17:14:15.677698134Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.6.4-0.9.0"],"first_patched_version":"0.9.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-w6q7-j642-7c25","https://nvd.nist.gov/vuln/detail/CVE-2025-48887","https://github.com/vllm-project/vllm/pull/18454","https://github.com/vllm-project/vllm/commit/4fc1bf813ad80172c1db31264beaef7d93fe0601","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-50.yaml","https://github.com/vllm-project/vllm"]},{"id":"GHSA-hjq4-87xh-g4fv","aliases":["CVE-2025-47277","PYSEC-2026-567"],"summary":"vLLM Allows Remote Code Execution via PyNcclPipe Communication Service","published":"2025-05-20T18:04:30Z","modified":"2026-06-29T12:26:19.187669729Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.6.5-0.8.5"],"first_patched_version":"0.8.5","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-hjq4-87xh-g4fv","https://nvd.nist.gov/vuln/detail/CVE-2025-47277","https://github.com/vllm-project/vllm/pull/15988","https://github.com/vllm-project/vllm/commit/0d6e187e88874c39cda7409cf673f9e6546893e7","https://docs.vllm.ai/en/latest/deployment/security.html","https://github.com/vllm-project/vllm"]},{"id":"GHSA-9pcc-gvx5-r5wm","aliases":["CVE-2025-30165"],"summary":"Remote Code Execution Vulnerability in vLLM Multi-Node Cluster Configuration","published":"2025-05-06T16:38:35Z","modified":"2026-02-04T03:48:22.507105Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.5","0.8.5.post1","0.9.0","0.9.0.1","0.9.1","0.9.2","0.5.2-0.10.0"],"first_patched_version":"0.10.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-9pcc-gvx5-r5wm","https://nvd.nist.gov/vuln/detail/CVE-2025-30165","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/blob/c21b99b91241409c2fdf9f3f8c542e8748b317be/vllm/distributed/device_communicators/shm_broadcast.py#L295-L301","https://github.com/vllm-project/vllm/blob/c21b99b91241409c2fdf9f3f8c542e8748b317be/vllm/distributed/device_communicators/shm_broadcast.py#L468-L470"]},{"id":"PYSEC-2025-42","aliases":["CVE-2025-32444","GHSA-hj4w-hm2g-p6w5"],"summary":"","published":"2025-04-30T01:15:51Z","modified":"2026-06-10T17:14:15.284662556Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","v0.8.4","v0.8.3rc1","v0.8.2","v0.8.1","v0.8.0rc2","v0.8.0rc1","v0.7.3","v0.7.2","v0.7.1","v0.7.0","v0.6.6.post1","v0.6.6","v0.6.5","v0.6.4.post1","v0.6.4","v0.6.3.post1","v0.6.3","v0.6.2","v0.6.1.post2","v0.6.1.post1","v0.6.1","v0.6.0","v0.5.5","v0.5.4","v0.5.3.post1","v0.5.3","v0.5.2","v0.5.1","v0.5.0.post1","v0.5.0","v0.4.3","v0.4.2","v0.4.1","v0.4.0.post1","v0.4.0","v0.3.3","v0.3.2","v0.3.1","v0.3.0","v0.2.7","v0.2.6","v0.2.5","v0.2.4","v0.2.3","v0.2.2","v0.2.1","v0.2.0","v0.1.7","v0.1.6","v0.1.5","v0.1.4","v0.1.3","v0.1.2","v0.1.1","v0.1.0","submission","0-a5450f11c95847cf51a17207af9a3ca5ab569b2c","0.6.5-0.8.5"],"first_patched_version":"a5450f11c95847cf51a17207af9a3ca5ab569b2c","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-hj4w-hm2g-p6w5","https://github.com/vllm-project/vllm/security/advisories/GHSA-x3m8-f7g5-qhm7","https://github.com/vllm-project/vllm/security/advisories/GHSA-hj4w-hm2g-p6w5","https://github.com/vllm-project/vllm/commit/a5450f11c95847cf51a17207af9a3ca5ab569b2c","https://github.com/vllm-project/vllm/blob/32b14baf8a1f7195ca09484de3008063569b43c5/vllm/distributed/kv_transfer/kv_pipe/mooncake_pipe.py#L179","https://github.com/advisories/GHSA-hj4w-hm2g-p6w5"]},{"id":"GHSA-vc6m-hm49-g9qg","aliases":["CVE-2025-46560"],"summary":"phi4mm: Quadratic Time Complexity in Input Token Processing​ leads to denial of service","published":"2025-04-29T16:43:10Z","modified":"2026-02-04T04:28:22.446114Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.8.0-0.8.5"],"first_patched_version":"0.8.5","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-vc6m-hm49-g9qg","https://nvd.nist.gov/vuln/detail/CVE-2025-46560","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/blob/8cac35ba435906fb7eb07e44fe1a8c26e8744f4e/vllm/model_executor/models/phi4mm.py#L1182-L1197"]},{"id":"GHSA-hj4w-hm2g-p6w5","aliases":["CVE-2025-32444","PYSEC-2025-42"],"summary":"vLLM Vulnerable to Remote Code Execution via Mooncake Integration","published":"2025-04-29T14:52:29Z","modified":"2026-06-10T17:14:15.353190446Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.6.5-0.8.5"],"first_patched_version":"0.8.5","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-hj4w-hm2g-p6w5","https://github.com/vllm-project/vllm/security/advisories/GHSA-x3m8-f7g5-qhm7","https://nvd.nist.gov/vuln/detail/CVE-2025-32444","https://github.com/vllm-project/vllm/commit/a5450f11c95847cf51a17207af9a3ca5ab569b2c","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-42.yaml","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/blob/32b14baf8a1f7195ca09484de3008063569b43c5/vllm/distributed/kv_transfer/kv_pipe/mooncake_pipe.py#L179"]},{"id":"GHSA-9f8f-2vmf-885j","aliases":["CVE-2025-30202"],"summary":"Data exposure via ZeroMQ on multi-node vLLM deployment","published":"2025-04-29T14:50:59Z","modified":"2026-02-04T04:29:08.388996Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.5.2-0.8.5"],"first_patched_version":"0.8.5","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-9f8f-2vmf-885j","https://nvd.nist.gov/vuln/detail/CVE-2025-30202","https://github.com/vllm-project/vllm/pull/17197","https://github.com/vllm-project/vllm/pull/6183","https://github.com/vllm-project/vllm/commit/a0304dc504c85f421d38ef47c64f83046a13641c","https://github.com/vllm-project/vllm"]},{"id":"GHSA-ggpf-24jw-3fcw","aliases":[],"summary":"CVE-2025-24357 Malicious model remote code execution fix bypass with PyTorch < 2.6.0","published":"2025-04-23T02:26:06Z","modified":"2026-02-04T02:30:14.986449Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0-0.8.0"],"first_patched_version":"0.8.0","reference_urls":["https://github.com/pytorch/pytorch/security/advisories/GHSA-53q9-r3pm-6pq6","https://github.com/vllm-project/vllm/security/advisories/GHSA-ggpf-24jw-3fcw","https://github.com/vllm-project/vllm/security/advisories/GHSA-rh4j-5rhw-hr54","https://github.com/vllm-project/vllm"]},{"id":"GHSA-hf3c-wxg2-49q9","aliases":[],"summary":"vLLM vulnerable to Denial of Service by abusing xgrammar cache","published":"2025-04-15T21:21:04Z","modified":"2025-04-15T21:21:04Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0.8.2","0.8.3","0.6.5-0.8.4"],"first_patched_version":"0.8.4","reference_urls":["https://github.com/mlc-ai/xgrammar/security/advisories/GHSA-389x-67px-mjg3","https://github.com/vllm-project/vllm/security/advisories/GHSA-hf3c-wxg2-49q9","https://github.com/vllm-project/vllm/pull/16283","https://github.com/vllm-project/vllm/commit/cb84e45ac75b42ba6795145923e8eb323bb825ad","https://github.com/vllm-project/vllm"]},{"id":"GHSA-cj47-qj6g-x7r4","aliases":["CVE-2024-9053","PYSEC-2025-222"],"summary":"vLLM allows Remote Code Execution by Pickle Deserialization via AsyncEngineRPCServer() RPC server entrypoints","published":"2025-03-20T12:32:50Z","modified":"2026-06-08T20:00:12.926704542Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0-0.6.0"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-9053","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-222.yaml","https://github.com/vllm-project/vllm","https://huntr.com/bounties/75a544f3-34a3-4da0-b5a3-1495cb031e09"]},{"id":"GHSA-pgr7-mhp5-fgjp","aliases":["CVE-2024-9052","PYSEC-2026-568"],"summary":"vLLM deserialization vulnerability in vllm.distributed.GroupCoordinator.recv_object","published":"2025-03-20T12:32:50Z","modified":"2026-06-29T12:26:15.934397778Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.8.0","0.8.1","0-0.8.1"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-9052","https://github.com/github/advisory-database/pull/5444","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/blob/32e7db25365415841ebc7c4215851743fbb1bad1/vllm/distributed/parallel_state.py#L480","https://github.com/vllm-project/vllm/blob/v0.8.1/vllm/distributed/parallel_state.py#L457","https://huntr.com/bounties/ea75728f-4efe-4a3d-9f53-33f2c908e9f8"]},{"id":"GHSA-5vqr-wprc-cpp7","aliases":["CVE-2024-11041","PYSEC-2026-566"],"summary":"vLLM Deserialization of Untrusted Data vulnerability","published":"2025-03-20T12:32:41Z","modified":"2026-06-29T12:26:13.367824363Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0-0.6.2"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-11041","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/blob/7193774b1ff8603ad5bf4598e5efba0d9a39b436/vllm/distributed/device_communicators/shm_broadcast.py#L441-L443","https://huntr.com/bounties/00136195-11e0-4ad0-98d5-72db066e867f"]},{"id":"PYSEC-2025-222","aliases":["CVE-2024-9053","GHSA-cj47-qj6g-x7r4"],"summary":"","published":"2025-03-20T10:15:46.327Z","modified":"2026-06-10T17:02:47.280425466Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0-0.6.0"],"first_patched_version":null,"reference_urls":["https://huntr.com/bounties/75a544f3-34a3-4da0-b5a3-1495cb031e09","https://github.com/advisories/GHSA-cj47-qj6g-x7r4"]},{"id":"PYSEC-2025-63","aliases":["CVE-2025-29783","GHSA-x3m8-f7g5-qhm7"],"summary":"","published":"2025-03-19T16:15:32Z","modified":"2025-07-01T23:59:56.271533Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0-288ca110f68d23909728627d3100e5a8db820aa2","0.6.5-0.8.0"],"first_patched_version":"288ca110f68d23909728627d3100e5a8db820aa2","reference_urls":["https://github.com/vllm-project/vllm/pull/14228","https://github.com/vllm-project/vllm/security/advisories/GHSA-x3m8-f7g5-qhm7","https://github.com/vllm-project/vllm/commit/288ca110f68d23909728627d3100e5a8db820aa2"]},{"id":"PYSEC-2025-223","aliases":["CVE-2025-29770","GHSA-mgrm-fgjv-mhv8"],"summary":"","published":"2025-03-19T16:15:31.977Z","modified":"2026-05-20T09:19:21.431189Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0-0.8.0"],"first_patched_version":"0.8.0","reference_urls":["https://github.com/vllm-project/vllm/blob/53be4a863486d02bd96a59c674bbec23eec508f6/vllm/model_executor/guided_decoding/outlines_logits_processors.py","https://github.com/vllm-project/vllm/pull/14837","https://github.com/vllm-project/vllm/security/advisories/GHSA-mgrm-fgjv-mhv8"]},{"id":"GHSA-x3m8-f7g5-qhm7","aliases":["CVE-2025-29783","PYSEC-2025-63"],"summary":"vLLM Allows Remote Code Execution via Mooncake Integration","published":"2025-03-19T15:55:58Z","modified":"2026-02-04T02:38:56.123704Z","withdrawn":null,"severity_band":"critical","cvss_score":null,"vulnerable_versions":["0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0.6.5-0.8.0"],"first_patched_version":"0.8.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-x3m8-f7g5-qhm7","https://nvd.nist.gov/vuln/detail/CVE-2025-29783","https://github.com/vllm-project/vllm/pull/14228","https://github.com/vllm-project/vllm/commit/288ca110f68d23909728627d3100e5a8db820aa2","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-63.yaml","https://github.com/vllm-project/vllm"]},{"id":"GHSA-mgrm-fgjv-mhv8","aliases":["CVE-2025-29770","PYSEC-2025-223"],"summary":"vLLM denial of service via outlines unbounded cache on disk","published":"2025-03-19T15:52:26Z","modified":"2026-06-08T20:00:12.973252529Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0.7.2","0.7.3","0-0.8.0"],"first_patched_version":"0.8.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-mgrm-fgjv-mhv8","https://nvd.nist.gov/vuln/detail/CVE-2025-29770","https://github.com/vllm-project/vllm/pull/14837","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-223.yaml","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/blob/53be4a863486d02bd96a59c674bbec23eec508f6/vllm/model_executor/guided_decoding/outlines_logits_processors.py"]},{"id":"PYSEC-2025-62","aliases":["CVE-2025-25183","GHSA-rm76-4mrf-v9r8"],"summary":"","published":"2025-02-07T20:15:34Z","modified":"2025-07-01T23:59:49.926776Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0-432117cd1f59c76d97da2eaff55a7d758301dbc7","0-0.7.2"],"first_patched_version":"432117cd1f59c76d97da2eaff55a7d758301dbc7","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-rm76-4mrf-v9r8","https://github.com/python/cpython/commit/432117cd1f59c76d97da2eaff55a7d758301dbc7","https://github.com/vllm-project/vllm/pull/12621"]},{"id":"GHSA-rm76-4mrf-v9r8","aliases":["CVE-2025-25183","PYSEC-2025-62"],"summary":"vLLM uses Python 3.12 built-in hash() which leads to predictable hash collisions in prefix cache","published":"2025-02-06T20:00:05Z","modified":"2026-02-04T04:01:41.506867Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0.7.0","0.7.1","0-0.7.2"],"first_patched_version":"0.7.2","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-rm76-4mrf-v9r8","https://nvd.nist.gov/vuln/detail/CVE-2025-25183","https://github.com/python/cpython/pull/99541","https://github.com/vllm-project/vllm/pull/12621","https://github.com/python/cpython/commit/432117cd1f59c76d97da2eaff55a7d758301dbc7","https://github.com/vllm-project/vllm/commit/73b35cca7f3745d07d439c197768b25d88b6ab7f","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-62.yaml","https://github.com/vllm-project/vllm"]},{"id":"GHSA-rh4j-5rhw-hr54","aliases":["CVE-2025-24357","PYSEC-2025-58"],"summary":"vllm: Malicious model to RCE by torch.load in hf_model_weights_iterator","published":"2025-01-27T20:50:30Z","modified":"2026-02-04T04:24:59.454109Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0-0.7.0"],"first_patched_version":"0.7.0","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-rh4j-5rhw-hr54","https://nvd.nist.gov/vuln/detail/CVE-2025-24357","https://github.com/vllm-project/vllm/pull/12366","https://github.com/vllm-project/vllm/commit/d3d6bb13fb62da3234addf6574922a4ec0513d04","https://github.com/pypa/advisory-database/tree/main/vulns/vllm/PYSEC-2025-58.yaml","https://github.com/vllm-project/vllm","https://github.com/vllm-project/vllm/releases/tag/v0.7.0","https://pytorch.org/docs/stable/generated/torch.load.html"]},{"id":"PYSEC-2025-58","aliases":["CVE-2025-24357","GHSA-rh4j-5rhw-hr54"],"summary":"","published":"2025-01-27T18:15:41Z","modified":"2025-06-27T21:56:54.188774Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0.5.5","0.6.0","0.6.1","0.6.1.post1","0.6.1.post2","0.6.2","0.6.3","0.6.3.post1","0.6.4","0.6.4.post1","0.6.5","0.6.6","0.6.6.post1","0-d3d6bb13fb62da3234addf6574922a4ec0513d04","0-0.7.0"],"first_patched_version":"d3d6bb13fb62da3234addf6574922a4ec0513d04","reference_urls":["https://github.com/vllm-project/vllm/security/advisories/GHSA-rh4j-5rhw-hr54","https://github.com/vllm-project/vllm/commit/d3d6bb13fb62da3234addf6574922a4ec0513d04","https://github.com/vllm-project/vllm/pull/12366","https://pytorch.org/docs/stable/generated/torch.load.html"]},{"id":"GHSA-w2r7-9579-27hf","aliases":["CVE-2024-8768"],"summary":"vLLM denial of service vulnerability","published":"2024-09-17T18:33:26Z","modified":"2026-02-04T04:23:20.426168Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0.5.1","0.5.2","0.5.3","0.5.3.post1","0.5.4","0-0.5.5"],"first_patched_version":"0.5.5","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-8768","https://github.com/vllm-project/vllm/issues/7632","https://github.com/vllm-project/vllm/pull/7746","https://github.com/vllm-project/vllm/commit/e25fee57c2e69161bd261f5986dc5aeb198bbd42","https://access.redhat.com/security/cve/CVE-2024-8768","https://bugzilla.redhat.com/show_bug.cgi?id=2311895","https://github.com/vllm-project/vllm"]},{"id":"GHSA-wc36-9694-f9rf","aliases":["CVE-2024-8939"],"summary":"vLLM Denial of Service via the best_of parameter","published":"2024-09-17T18:33:26Z","modified":"2026-02-04T04:07:59.681642Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.1","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.2.0","0.2.1","0.2.1.post1","0.2.2","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.0.post1","0.4.1","0.4.2","0.4.3","0.5.0","0.5.0.post1","0-0.5.0.post1"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-8939","https://github.com/vllm-project/vllm/issues/6137","https://access.redhat.com/security/cve/CVE-2024-8939","https://bugzilla.redhat.com/show_bug.cgi?id=2312782","https://github.com/vllm-project/vllm"]}]},{"package":"ollama","ecosystem":"PyPI","category":"inference","description":"Ollama Python client","homepage":null,"fetched_at":"2026-07-03T05:45:57.655Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"mcp","ecosystem":"PyPI","category":"mcp","description":"Anthropic-backed MCP Python SDK","homepage":"https://modelcontextprotocol.io","fetched_at":"2026-07-03T05:45:59.466Z","advisories_count":3,"open_count":3,"withdrawn_count":0,"latest_advisory_id":"GHSA-9h52-p55h-vw2f","latest_published":"2025-12-02T16:52:08Z","advisories":[{"id":"GHSA-9h52-p55h-vw2f","aliases":["CVE-2025-66416"],"summary":"Model Context Protocol (MCP) Python SDK does not enable DNS rebinding protection by default","published":"2025-12-02T16:52:08Z","modified":"2026-02-04T04:21:23.141036Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.9.1","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","1.10.0","1.10.1","1.11.0","1.12.0","1.12.1","1.12.2","1.12.3","1.12.4","1.13.0","1.13.1","1.14.0","1.14.1","1.15.0","1.16.0","1.17.0","1.18.0","1.19.0","1.2.0","1.2.0rc1","1.2.1","1.20.0","1.21.0","1.21.1","1.21.2","1.22.0","1.3.0","1.3.0rc1","1.4.0","1.4.1","1.5.0","1.6.0","1.7.0","1.7.1","1.8.0","1.8.1","1.9.0","1.9.1","1.9.2","1.9.3","1.9.4","0-1.23.0"],"first_patched_version":"1.23.0","reference_urls":["https://github.com/modelcontextprotocol/python-sdk/security/advisories/GHSA-9h52-p55h-vw2f","https://nvd.nist.gov/vuln/detail/CVE-2025-66416","https://github.com/modelcontextprotocol/python-sdk/commit/d3a184119e4479ea6a63590bc41f01dc06e3fa99","https://github.com/modelcontextprotocol/python-sdk"]},{"id":"GHSA-3qhf-m339-9g5v","aliases":["CVE-2025-53366"],"summary":"MCP Python SDK vulnerability in the FastMCP Server causes validation error, leading to DoS","published":"2025-07-04T22:06:49Z","modified":"2025-07-05T02:23:32.666479Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.9.1","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0","1.2.0rc1","1.2.1","1.3.0","1.3.0rc1","1.4.0","1.4.1","1.5.0","1.6.0","1.7.0","1.7.1","1.8.0","1.8.1","1.9.0","1.9.1","1.9.2","1.9.3","0-1.9.4"],"first_patched_version":"1.9.4","reference_urls":["https://github.com/modelcontextprotocol/python-sdk/security/advisories/GHSA-3qhf-m339-9g5v","https://nvd.nist.gov/vuln/detail/CVE-2025-53366","https://github.com/modelcontextprotocol/python-sdk/pull/822","https://github.com/modelcontextprotocol/python-sdk/commit/29c69e6a47d0104d0afcea6ac35e7ab02fde809a","https://github.com/modelcontextprotocol/python-sdk","https://github.com/modelcontextprotocol/python-sdk/releases/tag/v1.9.4"]},{"id":"GHSA-j975-95f5-7wqh","aliases":["CVE-2025-53365"],"summary":"MCP Python SDK has Unhandled Exception in Streamable HTTP Transport, Leading to Denial of Service","published":"2025-07-04T22:06:31Z","modified":"2025-07-05T02:25:38.468804Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.9.1","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0","1.2.0rc1","1.2.1","1.3.0","1.3.0rc1","1.4.0","1.4.1","1.5.0","1.6.0","1.7.0","1.7.1","1.8.0","1.8.1","1.9.0","1.9.1","1.9.2","1.9.3","1.9.4","0-1.10.0"],"first_patched_version":"1.10.0","reference_urls":["https://github.com/modelcontextprotocol/python-sdk/security/advisories/GHSA-j975-95f5-7wqh","https://nvd.nist.gov/vuln/detail/CVE-2025-53365","https://github.com/modelcontextprotocol/python-sdk/pull/967","https://github.com/modelcontextprotocol/python-sdk/commit/7b420656de48cfdb90b39eb582e60b6d55c2f891","https://github.com/modelcontextprotocol/python-sdk","https://github.com/modelcontextprotocol/python-sdk/releases/tag/v1.10.0"]}]},{"package":"deepeval","ecosystem":"PyPI","category":"evals","description":"LLM evaluation framework","homepage":null,"fetched_at":"2026-07-03T05:45:59.339Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"ragas","ecosystem":"PyPI","category":"evals","description":"RAG evaluation toolkit","homepage":null,"fetched_at":"2026-07-03T05:45:59.469Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"GHSA-95ww-475f-pr4f","latest_published":"2026-04-20T00:30:13Z","advisories":[{"id":"GHSA-95ww-475f-pr4f","aliases":["CVE-2026-6587"],"summary":"RAGAS has SSRF via Multi-Modal Faithfulness Collections Module","published":"2026-04-20T00:30:13Z","modified":"2026-04-22T22:18:53.097331Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.15","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.0rc2","0.3.1","0.3.2","0.3.2rc1","0.3.2rc2","0.3.2rc3","0.3.3","0.3.3rc1","0.3.4","0.3.5","0.3.5rc1","0.3.5rc2","0.3.6","0.3.7","0.3.8","0.3.9","0.4.0","0.4.1","0.4.2","0.4.3","0.2.3-0.4.3"],"first_patched_version":null,"reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2026-6587","https://adithyanak.com/ragas-v0214-arbitrary-file-read-vulnerability","https://github.com/vibrantlabsai/ragas","https://vuldb.com/submit/791088","https://vuldb.com/vuln/358222","https://vuldb.com/vuln/358222/cti"]},{"id":"GHSA-v2xr-wvrv-p969","aliases":["CVE-2025-45691"],"summary":"RAGAS has an Arbitrary File Read vulnerability","published":"2026-03-05T21:30:46Z","modified":"2026-04-08T22:33:24.950376Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.2.10","0.2.11","0.2.12","0.2.13","0.2.14","0.2.15","0.2.3","0.2.4","0.2.5","0.2.6","0.2.7","0.2.8","0.2.9","0.2.3-0.3.0-rc1"],"first_patched_version":"0.3.0-rc1","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-45691","https://github.com/explodinggradients/ragas/pull/1559","https://github.com/vibrantlabsai/ragas/pull/1991","https://github.com/vibrantlabsai/ragas/commit/b28433709cbedbb531db79dadcfbdbd3aa6adcb0","https://adithyanak.com/ragas-v0214-arbitrary-file-read-vulnerability","https://github.com/explodinggradients/ragas/blob/e97886ac976465efb60e5949c5d69baf30cc811d/src/ragas/prompt/multi_modal_prompt.py#L202","https://github.com/vibrantlabsai/ragas"]}]},{"package":"promptflow-evals","ecosystem":"PyPI","category":"evals","description":"PromptFlow evaluators","homepage":null,"fetched_at":"2026-07-03T05:45:59.341Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"langfuse","ecosystem":"PyPI","category":"observability","description":"Open-source LLM engineering platform","homepage":null,"fetched_at":"2026-07-03T05:45:59.373Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"langsmith","ecosystem":"PyPI","category":"observability","description":"LangChain observability and eval","homepage":null,"fetched_at":"2026-07-03T05:45:59.512Z","advisories_count":4,"open_count":4,"withdrawn_count":0,"latest_advisory_id":"GHSA-f4xh-w4cj-qxq8","latest_published":"2026-06-19T22:10:34Z","advisories":[{"id":"GHSA-f4xh-w4cj-qxq8","aliases":[],"summary":"LangSmith SDK TracingMiddleware: Arbitrary server-side file read","published":"2026-06-19T22:10:34Z","modified":"2026-06-20T19:59:25.718800635Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.0rc0","0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.18","0.0.19","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.62","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.84rc1","0.0.84rc2","0.0.84rc3","0.0.84rc4","0.0.84rc5","0.0.85","0.0.86","0.0.86rc1","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.1.0","0.1.1","0.1.10","0.1.100","0.1.101","0.1.102","0.1.103","0.1.104","0.1.105","0.1.106","0.1.107","0.1.108","0.1.108rc0","0.1.109","0.1.11","0.1.110","0.1.111","0.1.112","0.1.113","0.1.114","0.1.115","0.1.115rc0","0.1.115rc1","0.1.116","0.1.116rc1","0.1.117","0.1.118","0.1.119","0.1.12","0.1.120","0.1.121","0.1.122","0.1.123","0.1.124","0.1.125","0.1.126","0.1.127","0.1.128","0.1.129","0.1.13","0.1.130","0.1.131","0.1.132","0.1.133","0.1.134","0.1.135","0.1.136","0.1.137","0.1.138","0.1.138rc1","0.1.138rc2","0.1.139","0.1.139rc1","0.1.139rc2","0.1.14","0.1.140","0.1.141","0.1.142","0.1.143","0.1.144","0.1.144rc1","0.1.144rc2","0.1.144rc3","0.1.145","0.1.146","0.1.147","0.1.148rc1","0.1.15","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32rc1","0.1.32rc2","0.1.32rc3","0.1.32rc4","0.1.32rc5","0.1.32rc6","0.1.32rc7","0.1.32rc8","0.1.33","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.4","0.1.40","0.1.41","0.1.42","0.1.43","0.1.44","0.1.45","0.1.45rc1","0.1.46","0.1.46rc1","0.1.47","0.1.48","0.1.49","0.1.5","0.1.50","0.1.51","0.1.52","0.1.53","0.1.54","0.1.55","0.1.56","0.1.57","0.1.58","0.1.59","0.1.6","0.1.60","0.1.61","0.1.62","0.1.63","0.1.64","0.1.65","0.1.66","0.1.67","0.1.68","0.1.69","0.1.7","0.1.70","0.1.71","0.1.72","0.1.73","0.1.74","0.1.75","0.1.76","0.1.77","0.1.78","0.1.79","0.1.8","0.1.80","0.1.81","0.1.82","0.1.83","0.1.84","0.1.85","0.1.86","0.1.87","0.1.88","0.1.89","0.1.9","0.1.90","0.1.91","0.1.92","0.1.93","0.1.94","0.1.95","0.1.96","0.1.97","0.1.98","0.1.99","0.1.99rc1","0.2.0","0.2.1","0.2.10","0.2.11","0.2.11rc1","0.2.11rc10","0.2.11rc11","0.2.11rc12","0.2.11rc13","0.2.11rc14","0.2.11rc15","0.2.11rc2","0.2.11rc3","0.2.11rc4","0.2.11rc5","0.2.11rc6","0.2.11rc7","0.2.11rc8","0.2.11rc9","0.2.2","0.2.3","0.2.4","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.1","0.3.10","0.3.11","0.3.11rc1","0.3.12","0.3.13","0.3.14","0.3.14rc0","0.3.14rc1","0.3.15","0.3.16","0.3.17","0.3.18","0.3.18rc1","0.3.19","0.3.1rc1","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.25rc1","0.3.25rc2","0.3.26","0.3.27","0.3.27rc1","0.3.28","0.3.28rc1","0.3.28rc2","0.3.29","0.3.29rc0","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.35","0.3.36","0.3.37","0.3.37rc0","0.3.38","0.3.39","0.3.3rc0","0.3.4","0.3.40","0.3.41","0.3.42","0.3.43","0.3.44","0.3.45","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.4.0","0.4.1","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.2","0.4.20","0.4.21","0.4.22","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.3","0.4.30","0.4.31","0.4.32","0.4.32rc0","0.4.33","0.4.34","0.4.35","0.4.35rc1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.39rc0","0.4.39rc1","0.4.4","0.4.40","0.4.41","0.4.42","0.4.42rc0","0.4.43","0.4.43rc0","0.4.44","0.4.45","0.4.46","0.4.47","0.4.48","0.4.49","0.4.5","0.4.50","0.4.51","0.4.52","0.4.53","0.4.54","0.4.54rc0","0.4.55","0.4.56","0.4.57","0.4.58","0.4.59","0.4.6","0.4.60","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.2","0.6.0","0.6.0rc0","0.6.1","0.6.2","0.6.3","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.11","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24","0.7.25","0.7.26","0.7.27","0.7.28","0.7.29","0.7.3","0.7.30","0.7.31","0.7.32","0.7.33","0.7.34","0.7.35","0.7.36","0.7.37","0.7.38","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0.8.0","0.8.1","0.8.10","0.8.11","0.8.12","0.8.14","0.8.15","0.8.16","0.8.17","0.8.2","0.8.3","0.8.4","0.8.5","0.8.6","0.8.7","0.8.8","0.8.9","0-0.8.18"],"first_patched_version":"0.8.18","reference_urls":["https://github.com/langchain-ai/langsmith-sdk/security/advisories/GHSA-f4xh-w4cj-qxq8","https://github.com/langchain-ai/langsmith-sdk"]},{"id":"GHSA-3644-q5cj-c5c7","aliases":["CVE-2026-45134"],"summary":"LangSmith SDK: Public prompt pull deserializes untrusted manifests without trust boundary warning","published":"2026-05-13T15:29:30Z","modified":"2026-06-09T00:00:22.052113663Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0.0.0rc0","0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.18","0.0.19","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.62","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.84rc1","0.0.84rc2","0.0.84rc3","0.0.84rc4","0.0.84rc5","0.0.85","0.0.86","0.0.86rc1","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.1.0","0.1.1","0.1.10","0.1.100","0.1.101","0.1.102","0.1.103","0.1.104","0.1.105","0.1.106","0.1.107","0.1.108","0.1.108rc0","0.1.109","0.1.11","0.1.110","0.1.111","0.1.112","0.1.113","0.1.114","0.1.115","0.1.115rc0","0.1.115rc1","0.1.116","0.1.116rc1","0.1.117","0.1.118","0.1.119","0.1.12","0.1.120","0.1.121","0.1.122","0.1.123","0.1.124","0.1.125","0.1.126","0.1.127","0.1.128","0.1.129","0.1.13","0.1.130","0.1.131","0.1.132","0.1.133","0.1.134","0.1.135","0.1.136","0.1.137","0.1.138","0.1.138rc1","0.1.138rc2","0.1.139","0.1.139rc1","0.1.139rc2","0.1.14","0.1.140","0.1.141","0.1.142","0.1.143","0.1.144","0.1.144rc1","0.1.144rc2","0.1.144rc3","0.1.145","0.1.146","0.1.147","0.1.148rc1","0.1.15","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32rc1","0.1.32rc2","0.1.32rc3","0.1.32rc4","0.1.32rc5","0.1.32rc6","0.1.32rc7","0.1.32rc8","0.1.33","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.4","0.1.40","0.1.41","0.1.42","0.1.43","0.1.44","0.1.45","0.1.45rc1","0.1.46","0.1.46rc1","0.1.47","0.1.48","0.1.49","0.1.5","0.1.50","0.1.51","0.1.52","0.1.53","0.1.54","0.1.55","0.1.56","0.1.57","0.1.58","0.1.59","0.1.6","0.1.60","0.1.61","0.1.62","0.1.63","0.1.64","0.1.65","0.1.66","0.1.67","0.1.68","0.1.69","0.1.7","0.1.70","0.1.71","0.1.72","0.1.73","0.1.74","0.1.75","0.1.76","0.1.77","0.1.78","0.1.79","0.1.8","0.1.80","0.1.81","0.1.82","0.1.83","0.1.84","0.1.85","0.1.86","0.1.87","0.1.88","0.1.89","0.1.9","0.1.90","0.1.91","0.1.92","0.1.93","0.1.94","0.1.95","0.1.96","0.1.97","0.1.98","0.1.99","0.1.99rc1","0.2.0","0.2.1","0.2.10","0.2.11","0.2.11rc1","0.2.11rc10","0.2.11rc11","0.2.11rc12","0.2.11rc13","0.2.11rc14","0.2.11rc15","0.2.11rc2","0.2.11rc3","0.2.11rc4","0.2.11rc5","0.2.11rc6","0.2.11rc7","0.2.11rc8","0.2.11rc9","0.2.2","0.2.3","0.2.4","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.1","0.3.10","0.3.11","0.3.11rc1","0.3.12","0.3.13","0.3.14","0.3.14rc0","0.3.14rc1","0.3.15","0.3.16","0.3.17","0.3.18","0.3.18rc1","0.3.19","0.3.1rc1","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.25rc1","0.3.25rc2","0.3.26","0.3.27","0.3.27rc1","0.3.28","0.3.28rc1","0.3.28rc2","0.3.29","0.3.29rc0","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.35","0.3.36","0.3.37","0.3.37rc0","0.3.38","0.3.39","0.3.3rc0","0.3.4","0.3.40","0.3.41","0.3.42","0.3.43","0.3.44","0.3.45","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.4.0","0.4.1","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.2","0.4.20","0.4.21","0.4.22","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.3","0.4.30","0.4.31","0.4.32","0.4.32rc0","0.4.33","0.4.34","0.4.35","0.4.35rc1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.39rc0","0.4.39rc1","0.4.4","0.4.40","0.4.41","0.4.42","0.4.42rc0","0.4.43","0.4.43rc0","0.4.44","0.4.45","0.4.46","0.4.47","0.4.48","0.4.49","0.4.5","0.4.50","0.4.51","0.4.52","0.4.53","0.4.54","0.4.54rc0","0.4.55","0.4.56","0.4.57","0.4.58","0.4.59","0.4.6","0.4.60","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.2","0.6.0","0.6.0rc0","0.6.1","0.6.2","0.6.3","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.11","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24","0.7.25","0.7.26","0.7.27","0.7.28","0.7.29","0.7.3","0.7.30","0.7.31","0.7.32","0.7.33","0.7.34","0.7.35","0.7.36","0.7.37","0.7.38","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0-0.8.0"],"first_patched_version":"0.8.0","reference_urls":["https://github.com/langchain-ai/langsmith-sdk/security/advisories/GHSA-3644-q5cj-c5c7","https://nvd.nist.gov/vuln/detail/CVE-2026-45134","https://github.com/langchain-ai/langsmith-sdk"]},{"id":"GHSA-rr7j-v2q5-chgv","aliases":["CVE-2026-41182"],"summary":"LangSmith SDK: Streaming token events bypass output redaction","published":"2026-04-16T01:20:37Z","modified":"2026-05-06T20:14:18.221660394Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.0.0rc0","0.0.1","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","0.0.16","0.0.18","0.0.19","0.0.2","0.0.20","0.0.21","0.0.22","0.0.23","0.0.24","0.0.25","0.0.26","0.0.27","0.0.28","0.0.29","0.0.3","0.0.30","0.0.31","0.0.32","0.0.33","0.0.34","0.0.35","0.0.36","0.0.37","0.0.38","0.0.39","0.0.4","0.0.40","0.0.41","0.0.42","0.0.43","0.0.44","0.0.45","0.0.46","0.0.47","0.0.48","0.0.49","0.0.5","0.0.50","0.0.51","0.0.52","0.0.53","0.0.54","0.0.55","0.0.56","0.0.57","0.0.58","0.0.59","0.0.6","0.0.60","0.0.61","0.0.62","0.0.63","0.0.64","0.0.65","0.0.66","0.0.67","0.0.68","0.0.69","0.0.7","0.0.70","0.0.71","0.0.72","0.0.73","0.0.74","0.0.75","0.0.76","0.0.77","0.0.78","0.0.79","0.0.8","0.0.80","0.0.81","0.0.82","0.0.83","0.0.84","0.0.84rc1","0.0.84rc2","0.0.84rc3","0.0.84rc4","0.0.84rc5","0.0.85","0.0.86","0.0.86rc1","0.0.87","0.0.88","0.0.89","0.0.9","0.0.90","0.0.91","0.0.92","0.1.0","0.1.1","0.1.10","0.1.100","0.1.101","0.1.102","0.1.103","0.1.104","0.1.105","0.1.106","0.1.107","0.1.108","0.1.108rc0","0.1.109","0.1.11","0.1.110","0.1.111","0.1.112","0.1.113","0.1.114","0.1.115","0.1.115rc0","0.1.115rc1","0.1.116","0.1.116rc1","0.1.117","0.1.118","0.1.119","0.1.12","0.1.120","0.1.121","0.1.122","0.1.123","0.1.124","0.1.125","0.1.126","0.1.127","0.1.128","0.1.129","0.1.13","0.1.130","0.1.131","0.1.132","0.1.133","0.1.134","0.1.135","0.1.136","0.1.137","0.1.138","0.1.138rc1","0.1.138rc2","0.1.139","0.1.139rc1","0.1.139rc2","0.1.14","0.1.140","0.1.141","0.1.142","0.1.143","0.1.144","0.1.144rc1","0.1.144rc2","0.1.144rc3","0.1.145","0.1.146","0.1.147","0.1.148rc1","0.1.15","0.1.16","0.1.17","0.1.18","0.1.19","0.1.2","0.1.20","0.1.21","0.1.22","0.1.23","0.1.24","0.1.25","0.1.26","0.1.27","0.1.28","0.1.29","0.1.3","0.1.30","0.1.31","0.1.32rc1","0.1.32rc2","0.1.32rc3","0.1.32rc4","0.1.32rc5","0.1.32rc6","0.1.32rc7","0.1.32rc8","0.1.33","0.1.34","0.1.35","0.1.36","0.1.37","0.1.38","0.1.39","0.1.4","0.1.40","0.1.41","0.1.42","0.1.43","0.1.44","0.1.45","0.1.45rc1","0.1.46","0.1.46rc1","0.1.47","0.1.48","0.1.49","0.1.5","0.1.50","0.1.51","0.1.52","0.1.53","0.1.54","0.1.55","0.1.56","0.1.57","0.1.58","0.1.59","0.1.6","0.1.60","0.1.61","0.1.62","0.1.63","0.1.64","0.1.65","0.1.66","0.1.67","0.1.68","0.1.69","0.1.7","0.1.70","0.1.71","0.1.72","0.1.73","0.1.74","0.1.75","0.1.76","0.1.77","0.1.78","0.1.79","0.1.8","0.1.80","0.1.81","0.1.82","0.1.83","0.1.84","0.1.85","0.1.86","0.1.87","0.1.88","0.1.89","0.1.9","0.1.90","0.1.91","0.1.92","0.1.93","0.1.94","0.1.95","0.1.96","0.1.97","0.1.98","0.1.99","0.1.99rc1","0.2.0","0.2.1","0.2.10","0.2.11","0.2.11rc1","0.2.11rc10","0.2.11rc11","0.2.11rc12","0.2.11rc13","0.2.11rc14","0.2.11rc15","0.2.11rc2","0.2.11rc3","0.2.11rc4","0.2.11rc5","0.2.11rc6","0.2.11rc7","0.2.11rc8","0.2.11rc9","0.2.2","0.2.3","0.2.4","0.2.6","0.2.7","0.2.8","0.2.9","0.3.0","0.3.1","0.3.10","0.3.11","0.3.11rc1","0.3.12","0.3.13","0.3.14","0.3.14rc0","0.3.14rc1","0.3.15","0.3.16","0.3.17","0.3.18","0.3.18rc1","0.3.19","0.3.1rc1","0.3.2","0.3.20","0.3.21","0.3.22","0.3.23","0.3.24","0.3.25","0.3.25rc1","0.3.25rc2","0.3.26","0.3.27","0.3.27rc1","0.3.28","0.3.28rc1","0.3.28rc2","0.3.29","0.3.29rc0","0.3.3","0.3.30","0.3.31","0.3.32","0.3.33","0.3.34","0.3.35","0.3.36","0.3.37","0.3.37rc0","0.3.38","0.3.39","0.3.3rc0","0.3.4","0.3.40","0.3.41","0.3.42","0.3.43","0.3.44","0.3.45","0.3.5","0.3.6","0.3.7","0.3.8","0.3.9","0.4.0","0.4.1","0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.2","0.4.20","0.4.21","0.4.22","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.3","0.4.30","0.4.31","0.4.32","0.4.32rc0","0.4.33","0.4.34","0.4.35","0.4.35rc1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.39rc0","0.4.39rc1","0.4.4","0.4.40","0.4.41","0.4.42","0.4.42rc0","0.4.43","0.4.43rc0","0.4.44","0.4.45","0.4.46","0.4.47","0.4.48","0.4.49","0.4.5","0.4.50","0.4.51","0.4.52","0.4.53","0.4.54","0.4.54rc0","0.4.55","0.4.56","0.4.57","0.4.58","0.4.59","0.4.6","0.4.60","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.2","0.6.0","0.6.0rc0","0.6.1","0.6.2","0.6.3","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.10","0.7.11","0.7.12","0.7.13","0.7.14","0.7.15","0.7.16","0.7.17","0.7.18","0.7.19","0.7.2","0.7.20","0.7.21","0.7.22","0.7.23","0.7.24","0.7.25","0.7.26","0.7.27","0.7.28","0.7.29","0.7.3","0.7.30","0.7.4","0.7.5","0.7.6","0.7.7","0.7.8","0.7.9","0-0.7.31"],"first_patched_version":"0.5.19","reference_urls":["https://github.com/langchain-ai/langsmith-sdk/security/advisories/GHSA-rr7j-v2q5-chgv","https://nvd.nist.gov/vuln/detail/CVE-2026-41182","https://github.com/langchain-ai/langsmith-sdk"]},{"id":"GHSA-v34v-rq6j-cj6p","aliases":["CVE-2026-25528"],"summary":"LangSmith Client SDK Affected by Server-Side Request Forgery via Tracing Header Injection","published":"2026-02-09T20:36:59Z","modified":"2026-02-22T23:25:43.783797Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.4.10","0.4.11","0.4.12","0.4.13","0.4.14","0.4.15","0.4.16","0.4.17","0.4.18","0.4.19","0.4.20","0.4.21","0.4.22","0.4.23","0.4.24","0.4.25","0.4.26","0.4.27","0.4.28","0.4.29","0.4.30","0.4.31","0.4.32","0.4.32rc0","0.4.33","0.4.34","0.4.35","0.4.35rc1","0.4.36","0.4.37","0.4.38","0.4.39","0.4.39rc0","0.4.39rc1","0.4.40","0.4.41","0.4.42","0.4.42rc0","0.4.43","0.4.43rc0","0.4.44","0.4.45","0.4.46","0.4.47","0.4.48","0.4.49","0.4.50","0.4.51","0.4.52","0.4.53","0.4.54","0.4.54rc0","0.4.55","0.4.56","0.4.57","0.4.58","0.4.59","0.4.60","0.5.0","0.5.1","0.5.2","0.6.0","0.6.0rc0","0.6.1","0.6.2","0.4.10-0.6.3"],"first_patched_version":"0.6.3","reference_urls":["https://github.com/langchain-ai/langsmith-sdk/security/advisories/GHSA-v34v-rq6j-cj6p","https://nvd.nist.gov/vuln/detail/CVE-2026-25528","https://github.com/langchain-ai/langsmith-sdk"]}]},{"package":"opik","ecosystem":"PyPI","category":"observability","description":"Comet's LLM observability","homepage":null,"fetched_at":"2026-07-03T05:45:59.549Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"tiktoken","ecosystem":"PyPI","category":"tooling","description":"OpenAI BPE tokenizer","homepage":null,"fetched_at":"2026-07-03T05:45:59.557Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"tokenizers","ecosystem":"PyPI","category":"tooling","description":"HuggingFace fast tokenizers","homepage":null,"fetched_at":"2026-07-03T05:45:59.577Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"accelerate","ecosystem":"PyPI","category":"tooling","description":"HuggingFace Accelerate","homepage":null,"fetched_at":"2026-07-03T05:45:59.687Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"peft","ecosystem":"PyPI","category":"tooling","description":"Parameter-Efficient Fine-Tuning","homepage":null,"fetched_at":"2026-07-03T05:45:59.920Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"bitsandbytes","ecosystem":"PyPI","category":"tooling","description":"Quantization library","homepage":null,"fetched_at":"2026-07-03T05:45:59.892Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"tensorfeed","ecosystem":"PyPI","category":"tooling","description":"TensorFeed Python SDK (this project)","homepage":null,"fetched_at":"2026-07-03T05:45:59.927Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"@anthropic-ai/sdk","ecosystem":"npm","category":"llm-sdk","description":"Anthropic's official Claude SDK","homepage":"https://github.com/anthropics/anthropic-sdk-typescript","fetched_at":"2026-07-03T05:46:00.049Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"GHSA-p7fg-763f-g4gf","latest_published":"2026-04-29T22:28:12Z","advisories":[{"id":"GHSA-p7fg-763f-g4gf","aliases":["CVE-2026-41686"],"summary":"Claude SDK for TypeScript has Insecure Default File Permissions in Local Filesystem Memory Tool","published":"2026-04-29T22:28:12Z","modified":"2026-05-08T01:51:09.165218Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.79.0-0.91.1"],"first_patched_version":"0.91.1","reference_urls":["https://github.com/anthropics/anthropic-sdk-typescript/security/advisories/GHSA-p7fg-763f-g4gf","https://nvd.nist.gov/vuln/detail/CVE-2026-41686","https://github.com/anthropics/anthropic-sdk-typescript"]},{"id":"GHSA-5474-4w2j-mq4c","aliases":["CVE-2026-34451"],"summary":"Claude SDK for TypeScript: Memory Tool Path Validation Allows Sandbox Escape to Sibling Directories","published":"2026-04-01T21:16:49Z","modified":"2026-05-05T16:01:30.184364Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0.79.0-0.81.0"],"first_patched_version":"0.81.0","reference_urls":["https://github.com/anthropics/anthropic-sdk-typescript/security/advisories/GHSA-5474-4w2j-mq4c","https://nvd.nist.gov/vuln/detail/CVE-2026-34451","https://github.com/anthropics/anthropic-sdk-typescript/commit/0ac69b3438ee9c96b21a7d3c39c07b7cdb6995d9","https://github.com/anthropics/anthropic-sdk-typescript","https://github.com/anthropics/anthropic-sdk-typescript/releases/tag/sdk-v0.81.0"]}]},{"package":"openai","ecosystem":"npm","category":"llm-sdk","description":"OpenAI Node.js SDK","homepage":"https://github.com/openai/openai-node","fetched_at":"2026-07-03T05:45:59.891Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"@google/generative-ai","ecosystem":"npm","category":"llm-sdk","description":"Google Generative AI SDK","homepage":"https://github.com/google-gemini/generative-ai-js","fetched_at":"2026-07-03T05:45:59.941Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"@mistralai/mistralai","ecosystem":"npm","category":"llm-sdk","description":"Mistral AI Node.js SDK","homepage":null,"fetched_at":"2026-07-03T05:46:00.215Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"GHSA-jgg6-4rpr-wfh7","latest_published":"2026-05-18T17:55:53Z","advisories":[{"id":"GHSA-jgg6-4rpr-wfh7","aliases":[],"summary":"Broken dropper in @mistralai/mistralai, @mistralai/mistralai-azure, @mistralai/mistralai-gcp","published":"2026-05-18T17:55:53Z","modified":"2026-05-18T18:01:31.293350Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["2.2.2","2.2.3","2.2.4"],"first_patched_version":null,"reference_urls":["https://github.com/mistralai/client-ts/security/advisories/GHSA-jgg6-4rpr-wfh7","https://github.com/mistralai/client-ts"]},{"id":"MAL-2026-3432","aliases":["GHSA-3q49-cfcf-g5fm"],"summary":"Malicious code in @mistralai/mistralai (npm)","published":"2026-05-11T23:00:35Z","modified":"2026-05-18T01:02:38.604476Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["2.2.4","2.2.3","2.2.2"],"first_patched_version":null,"reference_urls":["https://github.com/advisories/GHSA-3q49-cfcf-g5fm","https://www.aikido.dev/blog/mini-shai-hulud-is-back-tanstack-compromised","https://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystem","https://socket.dev/blog/tanstack-npm-packages-compromised-mini-shai-hulud-supply-chain-attack","https://tanstack.com/blog/npm-supply-chain-compromise-postmortem","https://snyk.io/blog/tanstack-npm-packages-compromised/","https://github.com/TanStack/router/security/advisories/GHSA-g7cv-rxg3-hmpx","https://github.com/TanStack/router/issues/7383"]}]},{"package":"cohere-ai","ecosystem":"npm","category":"llm-sdk","description":"Cohere Node.js SDK","homepage":null,"fetched_at":"2026-07-03T05:46:00.131Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"groq-sdk","ecosystem":"npm","category":"llm-sdk","description":"Groq Cloud SDK","homepage":null,"fetched_at":"2026-07-03T05:46:00.118Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"together-ai","ecosystem":"npm","category":"llm-sdk","description":"Together AI Node.js SDK","homepage":null,"fetched_at":"2026-07-03T05:46:00.134Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"langchain","ecosystem":"npm","category":"agent-framework","description":"LangChain core framework","homepage":"https://js.langchain.com","fetched_at":"2026-07-03T05:46:00.535Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"GHSA-r399-636x-v7f6","latest_published":"2025-12-23T20:08:48Z","advisories":[{"id":"GHSA-r399-636x-v7f6","aliases":["CVE-2025-68665"],"summary":"LangChain serialization injection vulnerability enables secret extraction","published":"2025-12-23T20:08:48Z","modified":"2026-02-04T02:41:46.202973Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["1.0.0-1.2.3","0-0.3.37"],"first_patched_version":"1.1.8","reference_urls":["https://github.com/langchain-ai/langchainjs/security/advisories/GHSA-r399-636x-v7f6","https://nvd.nist.gov/vuln/detail/CVE-2025-68665","https://github.com/langchain-ai/langchainjs/commit/e5063f9c6e9989ea067dfdff39262b9e7b6aba62","https://github.com/langchain-ai/langchainjs","https://github.com/langchain-ai/langchainjs/releases/tag/%40langchain%2Fcore%401.1.8","https://github.com/langchain-ai/langchainjs/releases/tag/langchain%401.2.3"]},{"id":"GHSA-hc5w-c9f8-9cc4","aliases":["CVE-2024-7774"],"summary":"Langchain Path Traversal vulnerability","published":"2024-10-29T15:32:05Z","modified":"2026-02-04T02:33:11.240531Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0-0.2.19"],"first_patched_version":"0.2.19","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-7774","https://github.com/langchain-ai/langchainjs/commit/a0fad77d6b569e5872bd4a9d33be0c0785e538a9","https://github.com/langchain-ai/langchainjs","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2024-111.yaml","https://huntr.com/bounties/8fe40685-b714-4191-af7a-3de5e5628cee"]}]},{"package":"@langchain/core","ecosystem":"npm","category":"agent-framework","description":"LangChain core abstractions","homepage":null,"fetched_at":"2026-07-03T05:46:00.534Z","advisories_count":1,"open_count":1,"withdrawn_count":0,"latest_advisory_id":"GHSA-r399-636x-v7f6","latest_published":"2025-12-23T20:08:48Z","advisories":[{"id":"GHSA-r399-636x-v7f6","aliases":["CVE-2025-68665"],"summary":"LangChain serialization injection vulnerability enables secret extraction","published":"2025-12-23T20:08:48Z","modified":"2026-02-04T02:41:46.202973Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["1.0.0-1.1.8","0-0.3.80"],"first_patched_version":"1.1.8","reference_urls":["https://github.com/langchain-ai/langchainjs/security/advisories/GHSA-r399-636x-v7f6","https://nvd.nist.gov/vuln/detail/CVE-2025-68665","https://github.com/langchain-ai/langchainjs/commit/e5063f9c6e9989ea067dfdff39262b9e7b6aba62","https://github.com/langchain-ai/langchainjs","https://github.com/langchain-ai/langchainjs/releases/tag/%40langchain%2Fcore%401.1.8","https://github.com/langchain-ai/langchainjs/releases/tag/langchain%401.2.3"]}]},{"package":"@langchain/openai","ecosystem":"npm","category":"agent-framework","description":"LangChain OpenAI integration","homepage":null,"fetched_at":"2026-07-03T05:46:00.427Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"@langchain/anthropic","ecosystem":"npm","category":"agent-framework","description":"LangChain Anthropic integration","homepage":null,"fetched_at":"2026-07-03T05:46:00.466Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"@langchain/community","ecosystem":"npm","category":"agent-framework","description":"LangChain community integrations","homepage":null,"fetched_at":"2026-07-03T05:46:00.604Z","advisories_count":3,"open_count":3,"withdrawn_count":0,"latest_advisory_id":"GHSA-mphv-75cg-56wg","latest_published":"2026-02-25T22:59:48Z","advisories":[{"id":"GHSA-mphv-75cg-56wg","aliases":["CVE-2026-27795"],"summary":"LangChain Community: redirect chaining can lead to SSRF bypass via RecursiveUrlLoader","published":"2026-02-25T22:59:48Z","modified":"2026-05-19T20:44:24.258151839Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0-1.1.18"],"first_patched_version":"1.1.18","reference_urls":["https://github.com/langchain-ai/langchainjs/security/advisories/GHSA-gf3v-fwqg-4vh7","https://github.com/langchain-ai/langchainjs/security/advisories/GHSA-mphv-75cg-56wg","https://nvd.nist.gov/vuln/detail/CVE-2026-27795","https://github.com/langchain-ai/langchainjs/pull/9990","https://github.com/langchain-ai/langchainjs/commit/2812d2b2b9fd9343c4850e2ab906b8cf440975ee","https://github.com/langchain-ai/langchainjs/commit/d5e3db0d01ab321ec70a875805b2f74aefdadf9d","https://github.com/langchain-ai/langchainjs","https://github.com/langchain-ai/langchainjs/releases/tag/%40langchain%2Fcommunity%401.1.14","https://github.com/langchain-ai/langchainjs/releases/tag/%40langchain%2Fcommunity%401.1.18"]},{"id":"GHSA-gf3v-fwqg-4vh7","aliases":["CVE-2026-26019"],"summary":"@langchain/community affected by SSRF Bypass in RecursiveUrlLoader via insufficient URL origin validation","published":"2026-02-11T15:13:20Z","modified":"2026-05-19T20:44:23.074398116Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["0-1.1.14"],"first_patched_version":"1.1.14","reference_urls":["https://github.com/langchain-ai/langchainjs/security/advisories/GHSA-gf3v-fwqg-4vh7","https://nvd.nist.gov/vuln/detail/CVE-2026-26019","https://github.com/langchain-ai/langchainjs/pull/9990","https://github.com/langchain-ai/langchainjs/commit/d5e3db0d01ab321ec70a875805b2f74aefdadf9d","https://github.com/langchain-ai/langchainjs","https://github.com/langchain-ai/langchainjs/releases/tag/%40langchain%2Fcommunity%401.1.14"]},{"id":"GHSA-6m59-8fmv-m5f9","aliases":["CVE-2024-7042"],"summary":"@langchain/community SQL Injection vulnerability","published":"2024-10-29T15:32:05Z","modified":"2026-02-04T03:50:39.281863Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0-0.3.3"],"first_patched_version":"0.3.3","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2024-7042","https://github.com/langchain-ai/langchainjs/commit/615b9d9ab30a2d23a2f95fb8d7acfdf4b41ad7a6","https://github.com/langchain-ai/langchainjs","https://github.com/pypa/advisory-database/tree/main/vulns/langchain/PYSEC-2024-114.yaml","https://huntr.com/bounties/b612defb-1104-4fff-9fef-001ab07c7b2d"]}]},{"package":"@langchain/langgraph","ecosystem":"npm","category":"agent-framework","description":"LangGraph: stateful multi-actor agent runtimes","homepage":null,"fetched_at":"2026-07-03T05:46:00.454Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"llamaindex","ecosystem":"npm","category":"agent-framework","description":"LlamaIndex (formerly GPT Index) for TypeScript","homepage":null,"fetched_at":"2026-07-03T05:46:00.648Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"ai","ecosystem":"npm","category":"agent-framework","description":"Vercel AI SDK","homepage":"https://sdk.vercel.ai","fetched_at":"2026-07-03T05:46:00.764Z","advisories_count":1,"open_count":1,"withdrawn_count":0,"latest_advisory_id":"GHSA-rwvc-j5jr-mgvh","latest_published":"2025-11-07T03:30:25Z","advisories":[{"id":"GHSA-rwvc-j5jr-mgvh","aliases":["CVE-2025-48985"],"summary":"Vercel’s AI SDK's filetype whitelists can be bypassed when uploading files","published":"2025-11-07T03:30:25Z","modified":"2026-02-04T03:37:17.708730Z","withdrawn":null,"severity_band":"low","cvss_score":null,"vulnerable_versions":["0-5.0.52","5.1.0-beta.0-5.1.0-beta.9"],"first_patched_version":"5.0.52","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2025-48985","https://github.com/vercel/ai/issues/8881","https://github.com/vercel/ai/commit/930399bb9839a8baf3d349614106d78268775eed","https://github.com/vercel/ai","https://vercel.com/changelog/cve-2025-48985-input-validation-bypass-on-ai-sdk"]}]},{"package":"crewai","ecosystem":"npm","category":"agent-framework","description":"CrewAI multi-agent orchestration","homepage":null,"fetched_at":"2026-07-03T05:46:00.732Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"@inkeep/agents-core","ecosystem":"npm","category":"agent-framework","description":"Inkeep agents core","homepage":null,"fetched_at":"2026-07-03T05:46:00.772Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"mastra","ecosystem":"npm","category":"agent-framework","description":"Mastra agent framework","homepage":null,"fetched_at":"2026-07-03T05:46:01.089Z","advisories_count":1,"open_count":1,"withdrawn_count":0,"latest_advisory_id":"MAL-2026-5965","latest_published":"2026-06-17T03:11:00Z","advisories":[{"id":"MAL-2026-5965","aliases":["GHSA-mvf4-vg87-q9vm"],"summary":"Malicious code in mastra (npm)","published":"2026-06-17T03:11:00Z","modified":"2026-06-17T19:16:52.922178271Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["1.13.1"],"first_patched_version":null,"reference_urls":["https://github.com/advisories/GHSA-mvf4-vg87-q9vm"]}]},{"package":"@mastra/core","ecosystem":"npm","category":"agent-framework","description":"Mastra core runtime","homepage":null,"fetched_at":"2026-07-03T05:46:01.088Z","advisories_count":1,"open_count":1,"withdrawn_count":0,"latest_advisory_id":"MAL-2026-6011","latest_published":"2026-06-17T04:55:41Z","advisories":[{"id":"MAL-2026-6011","aliases":["GHSA-pp62-grrw-hvfp"],"summary":"Malicious code in @mastra/core (npm)","published":"2026-06-17T04:55:41Z","modified":"2026-06-17T06:02:00.481156423Z","withdrawn":null,"severity_band":"unknown","cvss_score":null,"vulnerable_versions":["1.42.1"],"first_patched_version":null,"reference_urls":["https://github.com/advisories/GHSA-pp62-grrw-hvfp"]}]},{"package":"@pinecone-database/pinecone","ecosystem":"npm","category":"rag","description":"Pinecone vector DB SDK","homepage":null,"fetched_at":"2026-07-03T05:46:00.984Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"chromadb","ecosystem":"npm","category":"rag","description":"Chroma open-source embedding DB","homepage":null,"fetched_at":"2026-07-03T05:46:01.048Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"@qdrant/js-client-rest","ecosystem":"npm","category":"rag","description":"Qdrant vector DB SDK","homepage":null,"fetched_at":"2026-07-03T05:46:00.982Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"weaviate-client","ecosystem":"npm","category":"rag","description":"Weaviate vector DB client","homepage":null,"fetched_at":"2026-07-03T05:46:01.027Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"transformers.js","ecosystem":"npm","category":"inference","description":"HuggingFace Transformers in the browser","homepage":null,"fetched_at":"2026-07-03T05:46:01.218Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"@huggingface/inference","ecosystem":"npm","category":"inference","description":"HuggingFace inference client","homepage":null,"fetched_at":"2026-07-03T05:46:01.210Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"ollama","ecosystem":"npm","category":"inference","description":"Ollama local LLM client","homepage":null,"fetched_at":"2026-07-03T05:46:01.253Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"replicate","ecosystem":"npm","category":"inference","description":"Replicate inference SDK","homepage":null,"fetched_at":"2026-07-03T05:46:01.339Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"@modelcontextprotocol/sdk","ecosystem":"npm","category":"mcp","description":"Anthropic-backed MCP TypeScript SDK","homepage":"https://modelcontextprotocol.io","fetched_at":"2026-07-03T05:46:02.755Z","advisories_count":3,"open_count":3,"withdrawn_count":0,"latest_advisory_id":"GHSA-345p-7cg4-v4c7","latest_published":"2026-02-04T20:04:16Z","advisories":[{"id":"GHSA-345p-7cg4-v4c7","aliases":["CVE-2026-25536"],"summary":"@modelcontextprotocol/sdk has cross-client data leak via shared server/transport instance reuse","published":"2026-02-04T20:04:16Z","modified":"2026-02-11T11:58:45.032803Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["1.10.0-1.26.0"],"first_patched_version":"1.26.0","reference_urls":["https://github.com/modelcontextprotocol/typescript-sdk/security/advisories/GHSA-345p-7cg4-v4c7","https://nvd.nist.gov/vuln/detail/CVE-2026-25536","https://github.com/modelcontextprotocol/typescript-sdk/issues/204","https://github.com/modelcontextprotocol/typescript-sdk/issues/243","https://github.com/modelcontextprotocol/typescript-sdk"]},{"id":"GHSA-8r9q-7v3j-jr4g","aliases":["CVE-2026-0621"],"summary":"Anthropic's MCP TypeScript SDK has a ReDoS vulnerability","published":"2026-01-05T21:30:33Z","modified":"2026-02-04T03:57:28.872926Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0-1.25.2"],"first_patched_version":"1.25.2","reference_urls":["https://github.com/modelcontextprotocol/typescript-sdk/security/advisories/GHSA-cqwc-fm46-7fff","https://nvd.nist.gov/vuln/detail/CVE-2026-0621","https://github.com/modelcontextprotocol/typescript-sdk/issues/965","https://github.com/modelcontextprotocol/typescript-sdk/commit/b392f02ffcf37c088dbd114fedf25026ec3913d3","https://github.com/modelcontextprotocol/typescript-sdk","https://github.com/modelcontextprotocol/typescript-sdk/releases/tag/v1.25.2","https://www.vulncheck.com/advisories/mcp-typescript-sdk-uritemplate-exploded-array-pattern-redos"]},{"id":"GHSA-w48q-cv73-mx4w","aliases":["CVE-2025-66414"],"summary":"Model Context Protocol (MCP) TypeScript SDK does not enable DNS rebinding protection by default","published":"2025-12-02T16:51:57Z","modified":"2026-02-04T03:57:44.696611Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0-1.24.0"],"first_patched_version":"1.24.0","reference_urls":["https://github.com/modelcontextprotocol/typescript-sdk/security/advisories/GHSA-w48q-cv73-mx4w","https://nvd.nist.gov/vuln/detail/CVE-2025-66414","https://github.com/modelcontextprotocol/typescript-sdk/pull/1205","https://github.com/modelcontextprotocol/typescript-sdk/commit/09623e2aa5044f9e9da62c73d820a8250b9d97ed","https://github.com/modelcontextprotocol/typescript-sdk/commit/608360047dc6899f1cf4f0226eb62fe7b11b3898","https://github.com/modelcontextprotocol/typescript-sdk"]}]},{"package":"@modelcontextprotocol/server-filesystem","ecosystem":"npm","category":"mcp","description":"Reference filesystem MCP server","homepage":null,"fetched_at":"2026-07-03T05:46:01.656Z","advisories_count":2,"open_count":2,"withdrawn_count":0,"latest_advisory_id":"GHSA-hc55-p739-j48w","latest_published":"2025-07-01T20:14:00Z","advisories":[{"id":"GHSA-hc55-p739-j48w","aliases":["CVE-2025-53110"],"summary":"@modelcontextprotocol/server-filesystem vulnerability allows for path validation bypass via colliding path prefix","published":"2025-07-01T20:14:00Z","modified":"2025-07-02T18:57:22Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0-0.6.2","2025.1.14-2025.7.1"],"first_patched_version":"2025.7.1","reference_urls":["https://github.com/modelcontextprotocol/servers/security/advisories/GHSA-hc55-p739-j48w","https://nvd.nist.gov/vuln/detail/CVE-2025-53110","https://github.com/modelcontextprotocol/servers/commit/cc99bdabdcad93a58877c5f3ab20e21d4394423d","https://github.com/modelcontextprotocol/servers"]},{"id":"GHSA-q66q-fx2p-7w4m","aliases":["CVE-2025-53109"],"summary":"@modelcontextprotocol/server-filesystem allows for path validation bypass via prefix matching and symlink handling","published":"2025-07-01T20:13:56Z","modified":"2025-07-02T18:56:39Z","withdrawn":null,"severity_band":"high","cvss_score":null,"vulnerable_versions":["0-0.6.2","2025.1.14-2025.7.1"],"first_patched_version":"2025.7.1","reference_urls":["https://github.com/modelcontextprotocol/servers/security/advisories/GHSA-q66q-fx2p-7w4m","https://nvd.nist.gov/vuln/detail/CVE-2025-53109","https://github.com/modelcontextprotocol/servers/commit/d00c60df9d74dba8a3bb13113f8904407cda594f","https://github.com/modelcontextprotocol/servers"]}]},{"package":"autoevals","ecosystem":"npm","category":"evals","description":"Braintrust evaluator library","homepage":null,"fetched_at":"2026-07-03T05:46:01.561Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"promptfoo","ecosystem":"npm","category":"evals","description":"LLM eval and red-teaming framework","homepage":null,"fetched_at":"2026-07-03T05:46:01.592Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"tensorfeed","ecosystem":"npm","category":"tooling","description":"TensorFeed JS SDK (this project)","homepage":null,"fetched_at":"2026-07-03T05:46:01.590Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"tiktoken","ecosystem":"npm","category":"tooling","description":"OpenAI tokenizer (BPE)","homepage":null,"fetched_at":"2026-07-03T05:46:01.548Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"gpt-tokenizer","ecosystem":"npm","category":"tooling","description":"GPT tokenizer (pure-JS)","homepage":null,"fetched_at":"2026-07-03T05:46:01.769Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]},{"package":"js-tiktoken","ecosystem":"npm","category":"tooling","description":"JS port of tiktoken","homepage":null,"fetched_at":"2026-07-03T05:46:01.799Z","advisories_count":0,"open_count":0,"withdrawn_count":0,"latest_advisory_id":null,"latest_published":null,"advisories":[]}],"attribution":{"source":"OSV.dev (aggregator of GHSA, PyPA, RustSec, Go vulndb, Maven, npm and others)","license":"Apache-2.0 for the OSV schema. Upstream advisories carry their own per-source terms (GHSA CC-BY-4.0, PyPA public domain, etc).","notes":"Daily refresh at 05:45 UTC. Premium derivative at /api/premium/ai-safety/packages/security/radar adds risk_score per package, risk_band classification, and notable_movers across the cohort."}}