SQL Injection Vulnerability in LangGraph's SQLite Store by langchain-ai
CVE-2025-8709

7.3HIGH

Key Information:

Vendor: Langchain-ai
Status: Langchain-ai/langchain
Vendor: CVE Published:; 26 October 2025

🔔 Create Langchain-ai Vulnerability Alert

What is CVE-2025-8709?

A SQL injection vulnerability affects the langchain-ai/langchain repository, specifically the SQLite store implementation of LangGraph. In the vulnerable version 2.0.10, improper handling of filter operators ($eq, $ne, $gt, $lt, $gte, $lte) exposes the application to attacks. Direct concatenation of strings without parameterization enables malicious actors to inject arbitrary SQL commands, resulting in unauthorized access to documents and sensitive data, including passwords and API keys. This vulnerability allows attackers to bypass application-level security measures, making it critical for users to address and patch their systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

langchain-ai/langchain <= unspecified

References

https://huntr.com/bounties/9793f4b3-76f8-44a4-989f-49a217...

CVSS V3.0

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Oct 26, 2025
Vulnerability Reserved
Aug 7, 2025

JSON

Langchain-ai