CVE-2026-41488

low Red Hat
CVSS v3 Base Score
3.4
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N
EPSS Score
0.0%
Exploitation probability in 30 days
Top 92% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
Required
Confidentiality
Low
Integrity
None
Availability
None
Published: April 24, 2026 (76 days ago)
Last Modified: April 24, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in langchain-openai. A remote attacker could exploit a Time-of-Check to Time-of-Use (TOCTOU) vulnerability, also known as a DNS rebinding vulnerability. This occurs because the _url_to_size() helper, used for image token counting, validates URLs for Server-Side Request Forgery (SSRF) protection and then fetches them in a separate network operation with independent DNS resolution. This allows an attacker to bypass SSRF protection, potentially leading to unauthorized access to internal resources or information disclosure.

CWE

CWE-367

Affected Products

Migration Toolkit for Applications 8OpenShift LightspeedRed Hat Ansible Automation Platform 2Red Hat Enterprise Linux AI (RHEL AI) 3Red Hat OpenShift AI (RHOAI)

References