CVE-2026-30617

Remote Code Execution via MCP STDIO Server Configuration in LangChain-ChatChat 0.3.1

Description

LangChain-ChatChat 0.3.1 contains a remote code execution vulnerability in its MCP STDIO server configuration and execution handling. A remote attacker can access the publicly exposed MCP management interface and configure an MCP STDIO server with attacker-controlled commands and arguments. When the MCP server is started and MCP is enabled for agent execution, subsequent agent activity triggers execution of arbitrary commands on the server. Successful exploitation allows arbitrary command execution within the context of the LangChain-ChatChat service.

INFO

Published Date :

2026-04-15T00:00:00.000Z

Last Modified :

2026-04-15T18:00:20.495Z

Source :

mitre

AFFECTED PRODUCTS

The following products are affected by CVE-2026-30617 vulnerability.

Vendors	Products
Langchain	Langchain

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-30617.

URL	Resource
https://www.ox.security/blog/mcp-supply-chain-advisory-rce-vulnerabilities-across-the-ai-ecosystem/

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact