CVE-2025-2828CRITICAL 10.0EPSS p96.1%

CVE-2025-2828CVE-2025-2828

Description

A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit component of the langchain-community package (specifically, langchain_community.agent_toolkits.openapi.toolkit.RequestsToolkit) in langchain-ai/langchain version 0.0.27. This vulnerability occurs because the toolkit does not enforce restrictions on requests to remote internet addresses, allowing it to also access local addresses. As a result, an attacker could exploit this flaw to perform port scans, access local services, retrieve instance metadata from cloud environments (e.g., Azure, AWS), and interact with servers on the local network. This issue has been fixed in version 0.0.28.

Scoring

CVSS 3.110.0 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS14.06% probability of exploitation · percentile 96.1% · 2026-06-19T12:03:05Z
Published2025-06-23
Last modified2025-07-16

Underlying weaknesses· 1

CWE-918

References

  1. https://github.com/langchain-ai/langchain/commit/e188d4ecb085d4561a0be3c583d26aa9c2c3283f
  2. https://huntr.com/bounties/8f771040-7f34-420a-b96b-5b93d4a99afc
  3. https://huntr.com/bounties/8f771040-7f34-420a-b96b-5b93d4a99afc

1

TypeTargetConfidenceTier
WeaknessServer-Side Request Forgery (SSRF)cwe-9180%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-45150
CVE
CVE-2025-28197
CVE
Langflow Missing Authentication Vulnerability
CVE
CVE-2025-66201
CVE
CVE-2025-68665
CVE
CVE-2026-25580
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.