Information security
fromThe Hacker News
13 hours agoCritical LangChain Core Vulnerability Exposes Secrets via Serialization Injection
LangChain Core has a critical serialization injection vulnerability (CVE-2025-68664, CVSS 9.3) that allows attackers to instantiate objects and exfiltrate secrets via 'lc' keys.