Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
LangChain4j-AIDeepin Using MD5 to Hash files may cause file upload conflicts
Vulnerability Description
LangChain4j-AIDeepin is a Retrieval enhancement generation (RAG) project. Prior to 3.5.0, LangChain4j-AIDeepin uses MD5 to hash files, which may cause file upload conflicts. This issue is fixed in 3.5.0.
CVSS Information
N/A
Vulnerability Type
可逆的单向哈希
Vulnerability Title
LangChain4j-AIDeepin 安全漏洞
Vulnerability Description
LangChain4j-AIDeepin是moyangzhan个人开发者的一个基于 AI 的工作效率提升工具。可用于辅助企业/团队进行技术研发、产品设计、人事/财务/IT信息咨询、系统/商品咨询、客服话术支撑等工作。 LangChain4j-AIDeepin 3.5.0之前版本存在安全漏洞,该漏洞源于使用MD5对文件进行哈希处理,可能会导致文件上传冲突。
CVSS Information
N/A
Vulnerability Type
N/A