Skip to content
Threat Feed

Vendor

Langroid

3 briefs RSS
high advisory

Langroid Tool Invocation Bypass via Unverified User Messages (CVE-2026-54771)

A high-severity vulnerability, CVE-2026-54771, in Langroid applications allows untrusted users to directly invoke internal tools via raw JSON payloads, even when these tools are configured not to be used by the LLM, enabling malicious actors to bypass security controls and execute sensitive operations like file read/write, database queries, or access to internal orchestration tools.

langroid vulnerability rce logic-error python
1t
critical advisory

Langroid Sandbox Escape via Incomplete eval() Mitigation

Langroid is vulnerable to a critical Remote Code Execution (RCE) in its `TableChatAgent` and `VectorStore` components when `full_eval=True` due to CVE-2026-54769; the `eval()` function fails to properly scrub `__builtins__` from `globals`, allowing attackers to inject `__import__('os').system()` calls via crafted prompt payloads, leading to unauthenticated RCE, unauthorized data access, or system compromise on the host running the Langroid agent.

Langroid rce sandbox-escape llm python supply-chain
2r 1t 1i
high advisory

Langroid File Tools Path Traversal Vulnerability (CVE-2026-50181)

A path traversal vulnerability (CVE-2026-50181) exists in Langroid's `ReadFileTool` and `WriteFileTool` components (versions <= 0.63.0), allowing an attacker to read or write arbitrary files outside the configured `curr_dir` via crafted `file_path` arguments, potentially leading to sensitive information disclosure or unauthorized file modification in applications exposing these tools to user or LLM input.

langroid path-traversal python-library vulnerability llm-agent
3t