langchain-ai News Articles

Recent news articles refferecing the vendors vulnerabilities.

favicon imageprismedia.ai

Critical LangChain "LangGrinch" Flaw Exposes Secrets - Patch Now

A critical serialization vulnerability in langchain-core, tracked as CVE-2025-68664 and nicknamed LangGrinch, can allow attackers to exfiltrate API keys, manipulate LLM outputs, and in some cases trigger remote code execution. Security teams and developers should update affected packages immediately...

favicon imageThe Hacker News

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

A critical LangChain Core vulnerability (CVE-2025-68664, CVSS 9.3) allows secret theft and prompt injection through unsafe serialization; updates fix

favicon imageCyber Press

Critical LangChain Vulnerability Exposes API Keys and Sensitive Credentials

A critical security flaw in LangChain, could allow attackers to extract sensitive environment variables and execute malicious code.

favicon imagegbhackers.com

Critical LangChain Vulnerability Allows Attackers to Steal Sensitive Secrets

A critical security vulnerability in LangChain, enables attackers to extract environment variable secrets and, through a serialization injection flaw.

favicon imageCybersecurityNews

Critical Langchain Vulnerability Let attackers Exfiltrate Sensitive Secrets from AI systems

A critical vulnerability in LangChain's core library (CVE-2025-68664) allows attackers to exfiltrate sensitive environment variables and potentially execute code through deserialization flaws.

favicon imageCyberSecurityNews

LangGraph Vulnerability Allows Malicious Python Code Execution During Deserialization

A remote code execution vulnerability discovered in LangGraph’s checkpoint serialization library, flaw resides in the JsonPlusSerializer component.

favicon imageCyberSecurityNews

LangGraph Vulnerability Allows Malicious Python Code Execution During Deserialization

A remote code execution vulnerability discovered in LangGraph’s checkpoint serialization library, flaw resides in the JsonPlusSerializer component.

favicon imagegbhackers.com

LangGraph Deserialization Flaw Enables Execution of Malicious Python Code

A critical remote code execution vulnerability has been discovered in LangGraph's checkpoint serialization library, affecting versions before 3.0.

No more news articles to load.