# cve

6 articlestagged with “cve”

Agent Identity and Credential Theft

Exploiting how AI agents authenticate to external services -- credential theft through agent manipulation, MFA bypass, and impersonation attacks including BodySnatcher and CVE-2025-64106.

agentscredentialsidentityauthenticationmfa-bypasscve

Advanced

Case Study: LangChain CVE Analysis

Analysis of LangChain CVEs including CVE-2023-29374, CVE-2023-36258, and their root causes.

case-studieslangchaincveanalysis

Intermediate

Case Study: LangChain Remote Code Execution Vulnerabilities (CVE-2023-29374 and CVE-2023-36258)

Technical analysis of critical remote code execution vulnerabilities in LangChain's LLMMathChain and PALChain components that allowed arbitrary Python execution through crafted LLM outputs.

case-studieslangchainrcecvesupply-chaincode-execution

Advanced

LangChain CVE Exploitation Lab

Reproduce and analyze LangChain CVEs including CVE-2023-29374 and CVE-2023-36258 in a safe lab environment.

labslangchaincveexploitationadvanced

Advanced

CVE Database for AI Systems

Curated database of CVEs affecting AI systems, frameworks, and deployment platforms.

referencescvedatabaseai-systems

Intermediate

LangChain Exploit Chain Walkthrough

Walkthrough of chaining LangChain CVEs for remote code execution from prompt injection through to shell access.

walkthroughslangchainexploit-chaincve

Advanced