CVE-2024-28088 | LangChain up to 0.1.10 Configuration load_chain path path traversal

CVE-2024-28088 | LangChain up to 0.1.10 Configuration load_chain path path traversal

A vulnerability classified as critical was found in LangChain up to 0.1.10. This vulnerability affects the function load_chain of the component Configuration Handler. The manipulation of the argument path leads to path traversal. This vulnerability was named CVE-2024-28088. The attack can be initiated remotely. Furthermore, there is an exploit available.