LangGraph Checkpoint Library Hit by Remote Code Execution Flaw

Threat: Vulnerability

Targeted Region: Global

Targeted Sector: Technology & IT

Criticality: High

EXECUTIVE SUMMARY:

The remote-code-execution vulnerability identified as CVE-2025-64439 CVSS 7.4 impacts the LangGraph “langgraph-checkpoint” library versions prior to 3.0. It arises from a fallback serialization mechanism in the JsonPlusSerializer component: if serialization using MessagePack fails (for example, when illegal Unicode surrogates are present), the system falls back to JSON mode, where a “constructor” field can reconstruct custom Python objects at deserialization time—allowing an attacker who controls checkpoint data to execute arbitrary Python code in the application’s context.

RECOMMENDATION:

We strongly recommend you update the LangGraph “langgraph-checkpoint” library to version 3.0.

REFERENCES:

The following reports contain further technical details:

https://securityonline.info/cve-2025-64439-rce-flaw-detected-in-langgraph-agent-orchestration-framework-at-risk/

Recent Advisories

Chinese Espionage Campaign Targets U.S. Policy Advocacy Organization

November 10, 2025

Multi-Stage Malicious Campaign Targets Cisco Through Credential Compromise

November 10, 2025

Multiple Zero-Day Vulnerabilities in QNAP NAS Operating Systems and Backup Tools

November 10, 2025

Vidar Infostealer Distributed via Trojanized npm Packages Targeting Developers

November 10, 2025

LangGraph Checkpoint Library Hit by Remote Code Execution Flaw

Recent Advisories

Report an Incident