Cyber Resilience

CVE-2024-1455

MediumPublic PoC

Published: 26 March 2024

Published
26 March 2024
Modified
30 July 2025
KEV Added
Patch
CVSS Score v3.1 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0011 28.1th percentile
Risk Priority 12 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-1455 is a medium-severity XML Entity Expansion (CWE-776) vulnerability in Langchain Langchain. Its CVSS base score is 5.9 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked at the 28.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

This vulnerability is AI-related — categorised as AI Agent Protocols and Integrations; in the Other ATLAS/OWASP Terms risk domain; MITRE ATLAS techniques in scope: External Harms (AML.T0048).

EU & UK References

Vulnerability details

A vulnerability in the langchain-ai/langchain repository allows for a Billion Laughs Attack, a type of XML External Entity (XXE) exploitation. By nesting multiple layers of entities within an XML document, an attacker can cause the XML parser to consume excessive…

more

CPU and memory resources, leading to a denial of service (DoS).

CWE(s)

AI Security AnalysisAI

AI Category
AI Agent Protocols and Integrations
Risk Domain
Other ATLAS/OWASP Terms
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
LangChain (langchain-ai/langchain) is a framework for building applications with LLMs, including AI agents, chains, and integrations with language models, tools, and external services.

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

The CVE enables a Billion Laughs XML attack (XXE variant) that exploits the LangChain library's XML parser to cause excessive CPU/memory consumption, facilitating endpoint DoS via application exploitation.

MITRE ATLAS TechniquesAI

MITRE ATLAS techniques

AML.T0048: External Harms

Affected Assets

langchain
langchain
0.1.4 — 0.1.35

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References