CVE-2025-68665

Dec. 24, 2025, 3:16 p.m.

8.6
High

Description

LangChain is a framework for building LLM-powered applications. Prior to @langchain/core versions 0.3.80 and 1.1.8, and prior to langchain versions 0.3.37 and 1.2.3, a serialization injection vulnerability exists in LangChain JS's toJSON() method (and subsequently when string-ifying objects using JSON.stringify(). The method did not escape objects with 'lc' keys when serializing free-form data in kwargs. The 'lc' key is used internally by LangChain to mark serialized objects. When user-controlled data contains this key structure, it is treated as a legitimate LangChain object during deserialization rather than plain user data. This issue has been patched in @langchain/core versions 0.3.80 and 1.1.8, and langchain versions 0.3.37 and 1.2.3

Product(s) Impacted

Vendor Product Versions
Langchain
  • Langchain
  • Core
  • 0.3.37-0.3.79, 1.2.0-1.2.2
  • 0.3.80, 1.1.8

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-502
Deserialization of Untrusted Data
The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
a langchain langchain 0.3.37-0.3.79 / / / / / / /
a langchain langchain 1.2.0-1.2.2 / / / / / / /
a langchain core 0.3.80 / / / / / / /
a langchain core 1.1.8 / / / / / / /

References

https://github.com/langchain-ai/langchainjs/commit/e5063f9c6e9989ea067dfdff39262b9e7b6aba62
https://github.com/langchain-ai/langchainjs/releases/tag/%40langchain%2Fcore%401.1.8
https://github.com/langchain-ai/langchainjs/releases/tag/langchain%401.2.3
https://github.com/langchain-ai/langchainjs/security/advisories/GHSA-r399-636x-v7f6
https://github.com/langchain-ai/langchainjs/security/advisories/GHSA-r399-636x-v7f6

Tags

security-advisories@github.com
CWE-502
2025-12-23
CVE-2025-68665

CVSS Score

8.6 / 10

CVSS Data - 3.1

  • Attack Vector: NETWORK
  • Attack Complexity: LOW
  • Privileges Required: NONE
  • Scope: CHANGED
  • Confidentiality Impact: HIGH
  • Integrity Impact: NONE
  • Availability Impact: NONE

    • CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

    View Vector String

Timeline

Published: Dec. 23, 2025, 11:15 p.m.
Last Modified: Dec. 24, 2025, 3:16 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security-advisories@github.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.