CVE-2024-5998 - OpenCVE

A vulnerability in the FAISS.deserialize_from_bytes function of langchain-ai/langchain allows for pickle deserialization of untrusted data. This can lead to the execution of arbitrary commands via the os.system function. The issue affects the latest version of the product.

No CVSS v4.0

No CVSS v3.1

Attack Vector Physical

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact Low

Availability Impact Low

User Interaction Required

No CVSS v2

This CVE is not in the KEV list.

Exploitation poc

Automatable no

Technical Impact partial

Vendors	Products
Langchain	Langchain

No data.

No data.

References

Link	Providers
https://github.com/langchain-ai/langchain/commit/604dfe2d99246b0c09f047c604f0c63eafba31e7
https://huntr.com/bounties/fa3a2753-57c3-4e08-a176-d7a3ffda28fe

History

Tue, 17 Sep 2024 14:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Langchain Langchain langchain
CPEs		cpe:2.3:a:langchain:langchain::::::::
Vendors & Products		Langchain Langchain langchain
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 17 Sep 2024 12:00:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability in the FAISS.deserialize_from_bytes function of langchain-ai/langchain allows for pickle deserialization of untrusted data. This can lead to the execution of arbitrary commands via the os.system function. The issue affects the latest version of the product.
Title		Deserialization of Untrusted Data in langchain-ai/langchain
Weaknesses		CWE-502
References		https://github.com/langchain-ai/langchain/commit/604dfe2d99246b0c09f047c604f0c63eafba31e7 https://huntr.com/bounties/fa3a2753-57c3-4e08-a176-d7a3ffda28fe
Metrics		cvssV3_0 `{'score': 5.2, 'vector': 'CVSS:3.0/AV:P/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L'}`

MITRE

Status: PUBLISHED

Assigner: @huntr_ai

Published: 2024-09-17T11:50:13.813Z

Updated: 2024-09-17T13:34:15.648Z

Reserved: 2024-06-14T13:32:32.118Z

Link: CVE-2024-5998

Vulnrichment

Updated: 2024-09-17T13:34:10.374Z

NVD

Status : Received

Published: 2024-09-17T12:15:02.977

Modified: 2024-09-17T12:15:02.977

Link: CVE-2024-5998

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-5998", "assignerOrgId": "c09c270a-b464-47c1-9133-acb35b22c19a", "state": "PUBLISHED", "assignerShortName": "@huntr_ai", "dateReserved": "2024-06-14T13:32:32.118Z", "datePublished": "2024-09-17T11:50:13.813Z", "dateUpdated": "2024-09-17T13:34:15.648Z"}, "containers": {"cna": {"title": "Deserialization of Untrusted Data in langchain-ai/langchain", "providerMetadata": {"orgId": "c09c270a-b464-47c1-9133-acb35b22c19a", "shortName": "@huntr_ai", "dateUpdated": "2024-09-17T11:50:13.813Z"}, "descriptions": [{"lang": "en", "value": "A vulnerability in the FAISS.deserialize_from_bytes function of langchain-ai/langchain allows for pickle deserialization of untrusted data. This can lead to the execution of arbitrary commands via the os.system function. The issue affects the latest version of the product."}], "affected": [{"vendor": "langchain-ai", "product": "langchain-ai/langchain", "versions": [{"version": "unspecified", "lessThan": "0.2.9", "status": "affected", "versionType": "custom"}]}], "references": [{"url": "https://huntr.com/bounties/fa3a2753-57c3-4e08-a176-d7a3ffda28fe"}, {"url": "https://github.com/langchain-ai/langchain/commit/604dfe2d99246b0c09f047c604f0c63eafba31e7"}], "metrics": [{"cvssV3_0": {"version": "3.0", "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "LOW", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:P/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L", "baseScore": 5.2, "baseSeverity": "MEDIUM"}}], "problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-502 Deserialization of Untrusted Data", "cweId": "CWE-502"}]}], "source": {"advisory": "fa3a2753-57c3-4e08-a176-d7a3ffda28fe", "discovery": "EXTERNAL"}}, "adp": [{"affected": [{"vendor": "langchain", "product": "langchain", "cpes": ["cpe:2.3:a:langchain:langchain:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "0.2.9", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-17T13:28:59.648989Z", "id": "CVE-2024-5998", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-17T13:34:15.648Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-5998", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-17T13:28:59.648989Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:langchain:langchain:*:*:*:*:*:*:*:*"], "vendor": "langchain", "product": "langchain", "versions": [{"status": "affected", "version": "0", "lessThan": "0.2.9", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-17T13:34:10.374Z"}}], "cna": {"title": "Deserialization of Untrusted Data in langchain-ai/langchain", "source": {"advisory": "fa3a2753-57c3-4e08-a176-d7a3ffda28fe", "discovery": "EXTERNAL"}, "metrics": [{"cvssV3_0": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 5.2, "attackVector": "PHYSICAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:P/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "langchain-ai", "product": "langchain-ai/langchain", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "0.2.9", "versionType": "custom"}]}], "references": [{"url": "https://huntr.com/bounties/fa3a2753-57c3-4e08-a176-d7a3ffda28fe"}, {"url": "https://github.com/langchain-ai/langchain/commit/604dfe2d99246b0c09f047c604f0c63eafba31e7"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the FAISS.deserialize_from_bytes function of langchain-ai/langchain allows for pickle deserialization of untrusted data. This can lead to the execution of arbitrary commands via the os.system function. The issue affects the latest version of the product."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-502", "description": "CWE-502 Deserialization of Untrusted Data"}]}], "providerMetadata": {"orgId": "c09c270a-b464-47c1-9133-acb35b22c19a", "shortName": "@huntr_ai", "dateUpdated": "2024-09-17T11:50:13.813Z"}}}, "cveMetadata": {"cveId": "CVE-2024-5998", "state": "PUBLISHED", "dateUpdated": "2024-09-17T13:34:15.648Z", "dateReserved": "2024-06-14T13:32:32.118Z", "assignerOrgId": "c09c270a-b464-47c1-9133-acb35b22c19a", "datePublished": "2024-09-17T11:50:13.813Z", "assignerShortName": "@huntr_ai"}, "dataVersion": "5.1"}