Detect CVE-2026-54769: Langroid TableChatAgent Sandbox Escape via eval() RCE in CrowdStrike LogScale
Detects exploitation of CVE-2026-54769, a critical sandbox escape vulnerability in Langroid's TableChatAgent component (versions <= 0.65.1). The incomplete eval() mitigation allows attackers to craft malicious inputs that escape the intended sandbox and achieve remote code execution on the host system. CVSS 10.0 with public PoC available.
MITRE ATT&CK
- Tactic
- Execution Privilege Escalation
LogScale Detection Query
// CVE-2026-54769: Langroid TableChatAgent eval() Sandbox Escape -> RCE
#event_simpleName IN ("ProcessRollup2", "NetworkReceiveAccept", "DnsRequest", "NetworkConnectIP4")
| case {
#event_simpleName = "ProcessRollup2":
CommandLine != null
AND (
ParentBaseFileName IN~ ("python.exe", "python3", "uvicorn", "gunicorn", "hypercorn", "daphne")
OR ParentImageFileName MATCHES "(?i)(python|uvicorn|gunicorn)"
)
AND (
CommandLine MATCHES "(?i)(__import__|os\.system|subprocess|exec\(|__builtins__|__subclasses__|__mro__)"
OR FileName IN~ ("bash", "sh", "dash", "curl", "wget", "nc", "ncat", "cmd.exe", "powershell.exe")
);
#event_simpleName IN ("NetworkConnectIP4", "DnsRequest"):
(
RemotePort IN (4444, 1337, 8888, 9999, 31337, 4545)
AND (
ImageFileName MATCHES "(?i)(python|uvicorn|gunicorn)"
OR ParentImageFileName MATCHES "(?i)(python|uvicorn|gunicorn)"
)
);
}
| eval ThreatName = "CVE-2026-54769:Langroid:TableChatAgent:RCE"
| eval AttackPhase = case(
#event_simpleName = "ProcessRollup2" AND ParentBaseFileName IN~ ("python.exe", "python3", "uvicorn", "gunicorn"), "PostExploit_ChildProc",
#event_simpleName IN ("NetworkConnectIP4", "DnsRequest"), "PostExploit_C2_Callback",
true(), "Unknown"
)
| select timestamp, aid, ComputerName, UserName, ParentBaseFileName, FileName, CommandLine, RemoteAddressIP4, RemotePort, ThreatName, AttackPhase
| sort timestamp desc
| limit 500 CrowdStrike Falcon LogScale (CQL) query detecting CVE-2026-54769 post-exploitation indicators: suspicious child processes spawned from Langroid/Python web server processes and outbound network connections on common reverse shell ports from Python processes.
Data Sources
Required Tables
False Positives & Tuning
- Legitimate Python web applications spawning curl or wget for webhook delivery or health check pings on the same endpoint
- DevOps automation using Python processes to invoke shell commands for deployment or configuration management tasks
- Security tools using Python parent processes to make outbound connections to threat intelligence APIs on common ports
- Load testing frameworks that spawn multiple network connections from Python processes during performance validation
Other platforms for CVE-2026-54769
Testing Methodology
Validate this detection against 4 adversary techniques from Atomic Red Team. Each test below lists the behaviour to exercise and the telemetry you should expect to see. Executable commands and cleanup steps are available with Pro.
- Test 1Langroid TableChatAgent eval() Basic Sandbox Escape via __import__
Expected signal: Python process executing os.system() call; creation of /tmp/cve_2026_54769_poc.txt by the Python process; Syslog/auditd records showing system() syscall from python3 process
- Test 2Langroid TableChatAgent MRO Traversal Sandbox Escape for RCE
Expected signal: Python process spawning subprocess.Popen with system commands; process tree showing python3 as parent of id/sh commands; auditd EXECVE records for child process
- Test 3CVE-2026-54769 HTTP API Exploitation Simulation with Reverse Shell Payload
Expected signal: Outbound TCP connection from Python/uvicorn process to attacker IP:4444; bash process spawned as child of python3/uvicorn; network flow showing new connection to port 4444 from the Langroid server IP; HTTP access log entry with encoded payload in POST body
- Test 4Langroid Package Version Enumeration for CVE-2026-54769 Exposure Assessment
Expected signal: pip command execution; find/grep commands scanning for requirements files; curl requests to application health/version endpoints; process enumeration via ps
Unlock Pro Content
Get the full detection package for CVE-2026-54769 including response playbook, investigation guide, and atomic red team tests.