Langchain Chatchat

3 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-6855 MEDIUM POC This Month

A vulnerability, which was classified as critical, has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This issue affects some unknown processing of the file /v1/file. The manipulation of the argument flag leads to path traversal. The exploit has been disclosed to the public and may be used.

Path Traversal Langchain Chatchat Langchain AI / ML
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.2%
CVE-2025-6854 MEDIUM POC This Month

A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0.3.1. This vulnerability affects unknown code of the file /v1/files?purpose=assistants. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Path Traversal Langchain Chatchat Langchain AI / ML
NVD GitHub VulDB
CVSS 3.1
4.3
EPSS
0.1%
CVE-2025-6853 MEDIUM POC This Month

A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This affects the function upload_temp_docs of the file /knowledge_base/upload_temp_docs of the component Backend. The manipulation of the argument flag leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Path Traversal Langchain Chatchat Langchain AI / ML
NVD GitHub VulDB
CVSS 3.1
6.3
EPSS
0.2%
CVE-2025-6855
EPSS 0% CVSS 5.5
MEDIUM POC This Month

A vulnerability, which was classified as critical, has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This issue affects some unknown processing of the file /v1/file. The manipulation of the argument flag leads to path traversal. The exploit has been disclosed to the public and may be used.

Path Traversal Langchain Chatchat Langchain +1
NVD GitHub VulDB
CVE-2025-6854
EPSS 0% CVSS 4.3
MEDIUM POC This Month

A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0.3.1. This vulnerability affects unknown code of the file /v1/files?purpose=assistants. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Path Traversal Langchain Chatchat Langchain +1
NVD GitHub VulDB
CVE-2025-6853
EPSS 0% CVSS 6.3
MEDIUM POC This Month

A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to 0.3.1. This affects the function upload_temp_docs of the file /knowledge_base/upload_temp_docs of the component Backend. The manipulation of the argument flag leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Path Traversal Langchain Chatchat Langchain +1
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy