File Disclosure Vulnerability in LangChain Framework
CVE-2026-55443

5.1MEDIUM

Key Information:

Vendor: Langchain-ai
Status: Langchain; Langchain-anthropic
Vendor: CVE Published:; 22 June 2026

🔔 Create Langchain-ai Vulnerability Alert

What is CVE-2026-55443?

The LangChain framework, used for building agents and LLM-powered applications, has a vulnerability that allows unauthorized access to files outside the designated root directory. Prior to version 1.3.9, several components within LangChain fail to properly restrict resolved filesystem paths and expand search patterns securely. Specifically, the middleware for file-search agents does not fully validate search patterns, allowing glob patterns and symlinks to point to unintended files. Additionally, path prefix authorization checks are implemented without adequate constraints, potentially permitting access to sibling paths. This flaw can lead to the disclosure of sensitive files when untrusted inputs influence path values or patterns. Users should update to version 1.3.9 or later to mitigate this risk.

Affected Version(s)

langchain < 1.3.9

langchain-anthropic < 1.4.6

References

https://github.com/langchain-ai/langchain/security/adviso...

x_refsource_CONFIRM

https://github.com/langchain-ai/langchain/commit/dcaf7795...

x_refsource_MISC

CVSS V3.1

Score:

5.1

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 22, 2026
Vulnerability Reserved
Jun 16, 2026

CVE-2026-55443 Data

JSON