Arbitrary Code Execution Vulnerability in langchain v.0.0.199 via PALChain
CVE-2023-36258 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
An issue in LangChain before 0.0.236 allows an attacker to execute arbitrary code because Python code with os.system, exec, or eval can be used.
Learn more about our Web Application Penetration Testing UK.