Threat Intel

v0.1

← CVEs

CVE-2025-67644

HIGH 7.3
Published
2025-12-11
Last Modified
2026-03-17
Affected Apps
9
Affected Devices
41
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB (both sync and async, via aiosqlite). Versions 3.0.0 and below are vulnerable to SQL injection through the checkpoint implementation. Checkpoint allows attackers to manipulate SQL queries through metadata filter keys, affecting applications that accept untrusted metadata filter keys (not just filter values) in checkpoint search operations. The _metadata_predicate() function constructs SQL queries by interpolating filter keys directly into f-strings without validation. This issue is fixed in version 3.0.1.
Affected Applications in Environment 9
sqlite v2.8.17-15+deb10u1
1 device
sqlite v3.34.1-9.el9_7
4 devices
sqlite v3.26.0-20.el8_10
2 devices
sqlite v3.34.1-8.el9_6
23 devices
sqlite v3.26.0-19.el8_9
3 devices
sqlite v3.26.0-20.el8_10
5 devices
sqlite v3.26.0-19.0.1.el8_9
1 device
sqlite v3.34.1-8.el9_6
1 device
sqlite v3.7.17-8.el7_7.1
1 device
Affected Devices 41
atc.db.usu.edu Linux chela03 Linux chela04 Linux chela05 Linux cleanaddressdev.banner.usu.edu Linux devjobsub.banner.usu.edu Linux dpapsb-161390.aggies.usu.edu Linux dpapsb-191594.mypc.usu.edu Linux el103-02.ece.usu.edu Linux el103-03.ece.usu.edu Linux el103-04.ece.usu.edu Linux el103-05.ece.usu.edu Linux el103-07.ece.usu.edu Linux el103-08.ece.usu.edu Linux el103-09.ece.usu.edu Linux el103-10.ece.usu.edu Linux el103-14.ece.usu.edu Linux el103-15.ece.usu.edu Linux el103-16.ece.usu.edu Linux el103-17.ece.usu.edu Linux el103-18.ece.usu.edu Linux el103-19.ece.usu.edu Linux el103-20.ece.usu.edu Linux el120-01.ece.usu.edu Linux el120-02.ece.usu.edu Linux el120-03.ece.usu.edu Linux el120-04.ece.usu.edu Linux el120-05.ece.usu.edu Linux el120-06.ece.usu.edu Linux el120-08.ece.usu.edu Linux el120-09.ece.usu.edu Linux el120-10.ece.usu.edu Linux el120-11.ece.usu.edu Linux el120-12.ece.usu.edu Linux el120-14.ece.usu.edu Linux eprocdev.banner.usu.edu Linux flo-rida Linux guru.cluster Linux oms.db.usu.edu Linux paymentworksdev.banner.usu.edu Linux zldtst.db.usu.edu Linux
References 2