SQL Injection Vulnerability in LangGraph's SQLite Store by langchain-ai
CVE-2025-8709

7.3HIGH

Key Information:

Vendor: Langchain-ai
Status: Langchain-ai/langchain
Vendor: CVE Published:; 26 October 2025

🔔 Create Langchain-ai Vulnerability Alert

What is CVE-2025-8709?

A SQL injection vulnerability affects the langchain-ai/langchain repository, specifically the SQLite store implementation of LangGraph. In the vulnerable version 2.0.10, improper handling of filter operators ($eq, $ne, $gt, $lt, $gte, $lte) exposes the application to attacks. Direct concatenation of strings without parameterization enables malicious actors to inject arbitrary SQL commands, resulting in unauthorized access to documents and sensitive data, including passwords and API keys. This vulnerability allows attackers to bypass application-level security measures, making it critical for users to address and patch their systems.

Affected Version(s)

langchain-ai/langchain <= unspecified

References

https://huntr.com/bounties/9793f4b3-76f8-44a4-989f-49a217...

CVSS V3.0

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 26, 2025
Vulnerability Reserved
Aug 7, 2025

JSON