LangChain pickle deserialization of untrusted data

GHSA-f2jm-rw3h-6phg · CVE-2024-5998

Published Sep 17, 2024 · Modified Jul 30, 2025

Description

A vulnerability in the FAISS.deserialize_from_bytes function of langchain-ai/langchain allows for pickle deserialization of untrusted data. This can lead to the execution of arbitrary commands via the os.system function. The issue affects versions prior to 0.2.4.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-5998
WEB https://github.com/langchain-ai/langchain/commit/604dfe2d99246b0c09f047c604f0c63eafba31e7
WEB https://github.com/langchain-ai/langchain/commit/77209f315efd13442ec51c67719ba37dfaa44511
PACKAGE https://github.com/langchain-ai/langchain
WEB https://huntr.com/bounties/fa3a2753-57c3-4e08-a176-d7a3ffda28fe

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes