1  info:
 2    name: langchain
 3    cve: CVE-2025-67644
 4    summary: LangGraph's SQLite checkpointer is vulnerable to SQL injection via metadata filter keys.
 5    details: |
 6      A SQL injection vulnerability exists in LangGraph's SQLite checkpoint implementation.
 7      Attackers can manipulate SQL queries by injecting malicious metadata filter keys,
 8      allowing them to execute arbitrary SQL queries against the database. This affects
 9      applications that accept untrusted metadata filter keys in checkpoint search operations.
10    cvss: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
11    severity: HIGH
12    security_advise: |
13      1. Update to the patched version of `langgraph-checkpoint-sqlite` (>=3.0.1).
14      2. Audit your code for locations where filter keys are derived from untrusted sources and ensure proper validation.
15  rule: version > "0" && version < "3.0.1"
16  references:
17    - https://github.com/langchain-ai/langgraph/security/advisories/GHSA-9rwj-6rc7-p77c
18    - https://nvd.nist.gov/vuln/detail/CVE-2025-67644
19    - https://github.com/langchain-ai/langgraph/commit/297242913f8ad2143ee3e2f72e67db0911d48e2a
20    - https://github.com/langchain-ai/langgraph