threat
engine
.sh
Back
·
··:··
Home
/
Product
/
langflow
Product
langflow
37 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-42048
< 1.9.0
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow is vulnerable to Path Trav
9.6
CRITICAL
CVE-2026-6543
>= 1.0.0 and <= 1.8.4
IBM Langflow Desktop 1.0.0 through 1.8.4 Langflow allows an attacker to execute arbitrary commands with the privileges of the proc
8.8
HIGH
CVE-2026-6542
>= 1.0.0 and < 1.9.0
IBM Langflow OSS 1.0.0 through 1.8.4 could allow any user to supply a flow_id to read transaction logs and vertex build data belon
6.5
MEDIUM
CVE-2026-3345
<= 1.8.4
IBM Langflow Desktop <=1.8.4 Langflow could allow a remote attacker to traverse directories on the system. An attacker could send
6.5
MEDIUM
CVE-2026-4503
>= 1.0.0 and <= 1.8.4
IBM Langflow Desktop 1.0.0 through 1.8.4 Langflow could allow an unauthenticated user to view other users' images due to an indire
7.5
HIGH
CVE-2026-4502
>= 1.2.0 and <= 1.8.4
IBM Langflow Desktop 1.2.0 through 1.8.4 Langflow could allow an authenticated attacker to traverse directories on the system. An
6.5
MEDIUM
CVE-2026-3346
>= 1.6.0 and <= 1.8.4
IBM Langflow Desktop 1.6.0 through 1.8.4 Lanflow is vulnerable to stored cross-site scripting. This vulnerability allows an authen
6.4
MEDIUM
CVE-2026-3340
>= 1.0.0 and <= 1.8.4
IBM Langflow Desktop 1.0.0 through 1.8.4 IBM Langflow is vulnerable to server-side request forgery (SSRF). This may allow an authe
6.5
MEDIUM
CVE-2026-3357
>= 1.6.0 and < 1.8.3
IBM Langflow Desktop 1.6.0 through 1.8.2 Langflow could allow an authenticated user to execute arbitrary code on the system, cause
8.8
HIGH
CVE-2026-34046
< 0.5.1
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.5.1, the
_read_flow
helper in
8.8
HIGH
CVE-2026-33873
< 1.9.0
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.9.0, the Agentic Assistant featu
9.9
CRITICAL
CVE-2026-5026
all versions
The '/api/v1/files/images/{flow_id}/{file_name}' endpoint serves SVG files with the 'image/svg+xml' content type without sanitizin
5.4
MEDIUM
CVE-2026-5025
all versions
The '/logs' and '/logs-stream' endpoints in the log router allow any authenticated user to read the full application log buffer. T
6.5
MEDIUM
CVE-2026-5022
all versions
The '/api/v1/files/images/{flow_id}/{file_name}' endpoint does not enforce any authentication or authorization checks, allowing an
5.3
MEDIUM
CVE-2026-33497
< 1.7.1
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.1, in the download_profile_pic
7.5
HIGH
CVE-2026-33484
>= 1.0.0 and < 1.9.0
Langflow is a tool for building and deploying AI-powered agents and workflows. In versions 1.0.0 through 1.8.1, the `/api/v1/files
7.5
HIGH
CVE-2026-33475
< 1.9.0
Langflow is a tool for building and deploying AI-powered agents and workflows. An unauthenticated remote shell injection vulnerabi
9.1
CRITICAL
CVE-2026-33309
>= 1.2.0 and < 1.9.0
Langflow is a tool for building and deploying AI-powered agents and workflows. Versions 1.2.0 through 1.8.1 have a bypass of the p
9.9
CRITICAL
CVE-2026-33053
< 1.9.0
Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the delete_api_key_rout
8.8
HIGH
CVE-2026-33017
< 1.8.2
Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the POST /api/v1/build_
9.8
CRITICAL
CVE-2026-27966
< 1.8.0
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.8.0, the CSV Agent node in Langf
9.8
CRITICAL
CVE-2026-0772
all versions
Langflow Disk Cache Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attack
7.5
HIGH
CVE-2026-0771
all versions
Langflow PythonFunction Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute
7.1
HIGH
CVE-2026-0770
all versions
Langflow exec_globals Inclusion of Functionality from Untrusted Control Sphere Remote Code Execution Vulnerability. This vulnerabi
9.8
CRITICAL
CVE-2026-0769
all versions
Langflow eval_custom_component_code Eval Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers
9.8
CRITICAL
CVE-2026-0768
all versions
Langflow code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary
9.8
CRITICAL
CVE-2026-21445
< 1.7.1
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.0.dev45, multiple critical API
9.1
CRITICAL
CVE-2025-68478
< 1.7.0
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.0, if an arbitrary path is spe
7.1
HIGH
CVE-2025-68477
< 1.7.0
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.0, Langflow provides an API Re
7.7
HIGH
CVE-2025-34291
<= 1.6.9
Langflow versions up to and including 1.6.9 contain a chained vulnerability that enables account takeover and remote code executio
8.8
HIGH
CVE-2025-57760
< 1.5.0
Langflow is a tool for building and deploying AI-powered agents and workflows. A privilege escalation vulnerability exists in Lang
8.8
HIGH
CVE-2025-3248
< 1.3.0
Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/validate/code endpoint. A remote and unauthenti
9.8
CRITICAL
CVE-2024-48061
<= 1.0.18
langflow <=1.0.18 is vulnerable to Remote Code Execution (RCE) as any component provided the code functionality and the components
9.8
CRITICAL
CVE-2024-42835
all versions
langflow v1.0.12 was discovered to contain a remote code execution (RCE) vulnerability via the PythonCodeTool component.
9.8
CRITICAL
CVE-2024-9277
<= 1.0.18
A vulnerability classified as problematic was found in Langflow up to 1.0.18. Affected by this vulnerability is an unknown functio
3.5
LOW
CVE-2024-7297
< 1.0.13
Langflow versions prior to 1.0.13 suffer from a Privilege Escalation vulnerability, allowing a remote and low privileged attacker
8.8
HIGH
CVE-2024-37014
<= 0.6.19
Langflow through 0.6.19 allows remote code execution if untrusted users are able to reach the "POST /api/v1/custom_component" endp
9.8
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin