Home > Vulnerability Database > CVE-2026-25481

Mend.io Vulnerability Database

CVE-2026-25481

Good to know:

Date: February 4, 2026

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.59.32, there is a bypass to the fix for CVE-2025-46724. TableChatAgent can call pandas_eval tool to evaluate the expression. There is a WAF in langroid/utils/pandas_utils.py introduced to block code injection CVE-2025-46724. However it can be bypassed due to _literal_ok() returning False instead of raising UnsafeCommandError on invalid input, combined with unrestricted access to dangerous dunder attributes (init, globals, builtins). This allows chaining whitelisted DataFrame methods to leak the eval builtin and execute arbitrary code. This issue has been patched in version 0.59.32.

Severity Score

9.6

Related Resources (6)

Url: https://nvd.nist.gov/vuln/detail/CVE-2026-25481

Url: https://github.com/langroid/langroid/commit/30abbc1a854dee22fbd2f8b2f575dfdabdb603ea

Url: https://github.com/langroid/langroid

Url: https://github.com/langroid/langroid/security/advisories/GHSA-jqq5-wc57-f8hj

Url: https://github.com/langroid/langroid/security/advisories/GHSA-x34r-63hx-w57f

Url: https://www.mend.io/vulnerability-database/CVE-2026-25481

Severity Score

9.6

Weakness Type (CWE)

Improper Control of Generation of Code ('Code Injection')

CWE-94

Top Fix

Upgrade Version

Upgrade to version langroid - 0.59.32;https://github.com/langroid/langroid.git - 0.59.32

Learn More

CVSS v3.1

Base Score:	9.6
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	CHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2026-25481

Good to know:

Date: February 4, 2026

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?