PYSEC-2025-70

See a problem?

Import Source

https://github.com/pypa/advisory-database/blob/main/vulns/langchain-community/PYSEC-2025-70.yaml

JSON Data

https://api.osv.dev/v1/vulns/PYSEC-2025-70

Aliases

Published

2025-06-23T21:15:25Z

Modified

2025-07-16T21:57:03.454237Z

Severity

10.0 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit component of the langchain-community package (specifically, langchaincommunity.agenttoolkits.openapi.toolkit.RequestsToolkit) in langchain-ai/langchain version 0.0.27. This vulnerability occurs because the toolkit does not enforce restrictions on requests to remote internet addresses, allowing it to also access local addresses. As a result, an attacker could exploit this flaw to perform port scans, access local services, retrieve instance metadata from cloud environments (e.g., Azure, AWS), and interact with servers on the local network. This issue has been fixed in version 0.0.28.

References

Affected packages

PyPI / langchain-community

Package

Name: langchain-community; View open source insights on deps.dev
Purl: pkg:pypi/langchain-community

Affected ranges

Type: GIT
Repo: https://github.com/langchain-ai/langchain
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

e188d4ecb085d4561a0be3c583d26aa9c2c3283f

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.28

Affected versions

0.*

0.0.1rc1

0.0.1rc2

0.0.1

0.0.2

0.0.3

0.0.4

0.0.5

0.0.6

0.0.7

0.0.8

0.0.9

0.0.10

0.0.11

0.0.12

0.0.13

0.0.14

0.0.15

0.0.16

0.0.17

0.0.18

0.0.19

0.0.20

0.0.21

0.0.22

0.0.23

0.0.24

0.0.25

0.0.26

0.0.27

Database specific

source

"https://github.com/pypa/advisory-database/blob/main/vulns/langchain-community/PYSEC-2025-70.yaml"