AI Threat Alert
LangChain Core Vulnerabilities
pip LLM Frameworks 22
Risk Score
8
Total CVEs
0
Critical
pip
Ecosystem
May 8, 2026
Last CVE
88%
Patch Rate
20d
Avg Time to Patch
136,905 stars
22,646 forks
582 issues
4,468 dependents
Last push May 17, 2026
View on GitHub
OpenSSF Scorecard 6.4/10
Known Vulnerabilities (8 total, page 1 of 1)
Severity CVE ID Summary CVSS Published
HIGH CVE-2026-44843 LangChain: deserialization poisons LLM chat history 8.2 May 8, 2026 MEDIUM CVE-2026-40087 LangChain: template injection leaks object attributes 5.3 Apr 9, 2026 MEDIUM GHSA-926x-3r5x-gfhw LangChain: f-string template injection exposes object internals 5.3 Apr 8, 2026 HIGH CVE-2026-34070 langchain-core: path traversal exposes host secrets via prompt config 7.5 Mar 27, 2026 LOW CVE-2026-26013 langchain-core: SSRF allows internal network access 3.7 Feb 10, 2026 HIGH CVE-2025-68664 langchain-core: Deserialization enables RCE 8.2 Dec 23, 2025 HIGH CVE-2025-65106 langchain-core: security flaw enables exploitation -- Nov 21, 2025 MEDIUM CVE-2024-10940 langchain-core: file read via prompt template inputs 5.3 Mar 20, 2025 Monitor LangChain Core in your stack
Get instant alerts when new vulnerabilities affect LangChain Core. CISO analysis, ATLAS technique mappings, and compliance reports included.
Start Monitoring