{
  "id": "CVE-2023-39631",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-09-01T16:15:08.370",
  "lastModified": "2023-09-01T21:15:30.513",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary code via the evaluate function in the numexpr library."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://github.com/langchain-ai/langchain/issues/8363",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://github.com/pydata/numexpr/issues/442",
      "source": "cve@mitre.org"
    }
  ]
}