CVE-2025-6984 | langchain-ai LangChain up to 0.3.63 EverNoteLoader etree.iterparse xml external entity reference

A vulnerability described as problematic has been identified in langchain-ai LangChain up to 0.3.63. Affected by this issue is the function etree.iterparse of the component EverNoteLoader Component. The manipulation results in xml external entity reference.

This vulnerability was named CVE-2025-6984. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More