Medium osv · GHSA-gwqq-6vq7-5j86

langchain Code Injection vulnerability

Published Aug 5, 2023 CVSS 4.0

An issue in Harrison Chase langchain allows an attacker to execute arbitrary code via the PALChain,from_math_prompt(llm).run in the python exec method.

Remote Code Execution

Affected AI Products

langchain

View original source

Get the weekly digest. Every Monday: top AI security stories of the week. Free.