CVE-2025-67644

Medienbericht

Exploit

EPSS 2.07%
Veröffentlicht 10.12.2025 23:37:36
Zuletzt bearbeitet 17.03.2026 19:47:15
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

LangGraph SQLite Checkpoint is vulnerable to SQL Injection via metadata filter key in checkpointer list method

LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB (both sync and async, via aiosqlite). Versions 3.0.0 and below are vulnerable to SQL injection through the checkpoint implementation. Checkpoint allows attackers to manipulate SQL queries through metadata filter keys, affecting applications that accept untrusted metadata filter keys (not just filter values) in checkpoint search operations. The _metadata_predicate() function constructs SQL queries by interpolating filter keys directly into f-strings without validation. This issue is fixed in version 3.0.1.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 7

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Langchain ≫ Langgraph-checkpoint-sqlite SwPlatformpython Version < 3.0.1

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.07%	0.79

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
security-advisories@github.com	7.3	2	4.7	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.

VulnDex Intel

Media Report

12.06.2026 12:14

Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.

VulnDex Intel

Media Report

10.04.2026 15:18

https://github.com/langchain-ai/langgraph/security/advisories/GHSA-9rwj-6rc7-p77c

Vendor Advisory

Exploit

https://github.com/langchain-ai/langgraph/commit/297242913f8ad2143ee3e2f72e67db0911d48e2a

Patch

https://nvd.nist.gov/vuln/detail/CVE-2025-67644

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-67644

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-67644

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-67644