LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution

The Hacker News

Three patched vulnerabilities (CVE-2025-67644, CVE-2026-28277, CVE-2026-27022) in LangGraph's checkpointing allow attackers to chain SQL injection and unsafe deserialization for RCE. The flaws affect self-hosted deployments using SQLite or Redis checkpointer with user-controlled filter input; LangChain's managed platform (LangSmith) is not affected.

LangChainSecurity

The Hacker News

Jun 12, 9:50 AM