CVE-2025-64104 HIGH

CVE-2025-64104: LangGraph SQLite Checkpoint Filter Key SQL Injection POC for SqliteStore

Vendor Langchain-Ai

Product langgraph

Weakness CWE-89 · SQLi

Published October 29, 2025

Last update October 30, 2025

View on NVD All CVEs

CVSS base score

7.3/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality High

Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N

What the vulnerability does

01Description

LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB (both sync and async, via aiosqlite). Prior to 2.0.11, LangGraph's SQLite store implementation contains SQL injection vulnerabilities using direct string concatenation without proper parameterization, allowing attackers to inject arbitrary SQL and bypass access controls. This vulnerability is fixed in 2.0.11.

Key dates

02Disclosure timeline

October 29, 2025 CVE published

October 30, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-64104 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/89.html

Related vulnerabilities

CVE-2025-64104: LangGraph SQLite Checkpoint Filter Key SQL Injection POC for SqliteStore

01Description

02Disclosure timeline

03References

04Related CVE