wid-sec-w-2026-1275
·
Published 2026-04-26
·
View on BSI CERT-Bund ↗
LangChain (openai, text-splitters): Multiple Vulnerabilities allow Offenlegung from Informationen and SSRF-Umgehung
CVSS 3.1
LOW
Risk Summary
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in LangChain ausnutzen, um SSRF-Schutzmaßnahmen zu umgehen und Informationen offenzulegen.
CVEs (2)
Affected Vendors
Open Source
Affected Products (4)
Open Source
·
LangChain
text-splitters <1.1.2
Open Source
·
LangChain
text-splitters 1.1.2
Open Source
·
LangChain
openai <1.1.14
Open Source
·
LangChain
openai 1.1.14
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more