CVE-2025-46724

Published: May 20, 2025Modified: Jun 17, 2025

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: security-advisories@github.com (Secondary)

Description

Langroid is a Python framework to build large language model (LLM)-powered applications. Prior to version 0.53.15, `TableChatAgent` uses `pandas eval()`. If fed by untrusted user input, like the case of a public-facing LLM application, it may be vulnerable to code injection. Langroid 0.53.15 sanitizes input to `TableChatAgent` by default to tackle the most common attack vectors, and added several warnings about the risky behavior in the project documentation.

Affected (1)

Products: Langroid: Langroid

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Langroid Langroid	Before 0.53.15

Related CWEs

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (3)

https://github.com/langroid/langroid/commit/0d9e4a7bb3ae2eef8d38f2e970ff916599a2b2a6

Source: security-advisories@github.com

Patch

https://github.com/langroid/langroid/security/advisories/GHSA-jqq5-wc57-f8hj

Source: security-advisories@github.com

ExploitVendor Advisory

https://github.com/langroid/langroid/security/advisories/GHSA-jqq5-wc57-f8hj

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

ExploitVendor Advisory

Timeline

No history available yet.