CVE-2023-29374

Published: 05/04/2023 Updated: 17/04/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

In LangChain up to and including 0.0.131, the LLMMathChain chain allows prompt injection attacks that can execute arbitrary code via the Python exec method.

Vulnerable Product	Search on Vulmon	Subscribe to Product
langchain langchain

A curated list of awesome security tools, experimental case or other interesting things with LLM or GPT.

Awesome GPT + Security A curated list of awesome security tools, experimental case or other interesting things with LLM or GPT Contents Tools Integrated Audit Reconnaissance Offensive Detecting Preventing Social Engineering Reverse Engineering Investigation Fix Assessment Cases Experimental Academic Blogs Fun GPT Security Standard Bypass Security Policy Bug Bounty Cra

A curation of awesome tools, documents and projects about LLM Security.

Awesome LLM Security A curation of awesome tools, documents and projects about LLM Security Contributions are always welcome Please read the Contribution Guidelines before contributing Table of Contents Awesome LLM Security Papers Tools Articles Other Awesome Projects Other Useful Resources Papers Not what you've signed up for: Compromising Real-World LLM-Integra

CWE-74 https://twitter.com/rharang/status/1641899743608463365/photo/1 https://github.com/hwchase17/langchain/pull/1119 https://github.com/hwchase17/langchain/issues/814 https://github.com/hwchase17/langchain/issues/1026 https://nvd.nist.gov https://github.com/cckuailong/awesome-gpt-security

CVE-2023-29374

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect