Known Vulnerabilities for Langchain by Langchain-ai
Listed below are 10 of the newest known vulnerabilities associated with "Langchain" by "Langchain-ai".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-55443 json | LangChain is a framework for building agents and LLM-powered applications. Prior to 1.3.9, several LangChain components that ... | Not Provided | 2026-06-22 | 2026-06-22 |
| CVE-2026-45401 json | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, the valida... | Not Provided | 2026-05-15 | 2026-05-18 |
| CVE-2026-45134 json | LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to LangSmith SDK Python 0.8.0 and JS/T... | Not Provided | 2026-05-27 | 2026-05-27 |
| CVE-2026-44843 json | LangChain is a framework for building agents and LLM-powered applications. Prior to 0.3.85 and 1.3.3, LangChain contains olde... | Not Provided | 2026-05-26 | 2026-05-27 |
| CVE-2026-41488 json | LangChain is a framework for building agents and LLM-powered applications. Prior to 1.1.14, langchain-openai's _url_to_size()... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-41481 json | LangChain is a framework for building agents and LLM-powered applications. Prior to langchain-text-splitters 1.1.2, HTMLHead... | Not Provided | 2026-04-24 | 2026-06-30 |
| CVE-2026-34070 json | LangChain is a framework for building agents and LLM-powered applications. Prior to version 1.2.22, multiple functions in lan... | Not Provided | 2026-03-31 | 2026-07-10 |
| CVE-2026-30617 json | LangChain-ChatChat 0.3.1 contains a remote code execution vulnerability in its MCP STDIO server configuration and execution h... | Not Provided | 2026-04-15 | 2026-04-15 |
| CVE-2026-14742 json | A vulnerability was determined in langchain-ai langgraph up to 1.2.4. The affected element is the function _freeze of the fil... | Not Provided | 2026-07-05 | 2026-07-06 |
| CVE-2026-14630 json | A vulnerability has been found in ForceInjection AI-fundermentals 2.0/3.0. Affected by this vulnerability is the function get... | Not Provided | 2026-07-04 | 2026-07-06 |