CVE-2025-64439

Name of the Vulnerable Software and Affected Versions LangGraph versions 2.1.2 and below

Description LangGraph’s SQLite Checkpoint, which utilizes SQLite databases for checkpoint saving, contains a Remote Code Execution (RCE) issue in the JsonPlusSerializer when deserializing payloads saved in "json" serialization mode. The serializer defaults to "msgpack" but falls back to "json" if Unicode surrogate values cause serialization to fail. This issue allows for arbitrary code execution. The issue is addressed in version 3.0.0.

Recommendations Update to version 3.0.0 or later.