Langchain-AI Web Research Retriever Vulnerable to SSRF Attacks
CVE-2024-3095

7.7HIGH

Key Information:

Vendor: Langchain-ai
Status: Langchain-ai/langchain
Vendor: CVE Published:; 6 June 2024

🔔 Create Langchain-ai Vulnerability Alert

What is CVE-2024-3095?

A vulnerability exists in the Web Research Retriever component of langchain-ai's langchain, specifically in version 0.1.5. This flaw is classified as a Server-Side Request Forgery (SSRF), enabling attackers to forge requests that can reach local addresses due to a lack of request restrictions. Such a vulnerability could be exploited to execute port scans, access sensitive local services, and interact with cloud instance metadata. Although attacks are limited to GET requests, the implications are severe, including potential unauthorized access to internal API responses and exposure of confidential information. The ability to leverage the Web Explorer server as a proxy for web attacks on third-party sites further heightens the risk, facilitating serious impacts on data integrity and security.

Affected Version(s)

langchain-ai/langchain <= unspecified

References

https://huntr.com/bounties/e62d4895-2901-405b-9559-38276b...

CVSS V3.1

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 6, 2024
Vulnerability Reserved
Mar 29, 2024

JSON