Tag

Ibm Langflow

2 briefs RSS

IBM Langflow OSS Remote Code Execution Vulnerability (CVE-2026-7524)

IBM Langflow OSS versions 1.0.0 through 1.9.1 are vulnerable to remote code execution (CVE-2026-7524) due to improper validation of symbolic links during archive extraction, potentially allowing an attacker to execute arbitrary code on the system.

Langflow OSS cve-2026-7524 rce path traversal ibm langflow

2r 1t 1c 3w ago

critical threat

IBM Langflow Desktop Vulnerable to Remote Command Execution (CVE-2026-6543)

3 rules 1 TTP 1 CVE

IBM Langflow Desktop versions 1.0.0 through 1.8.4 are vulnerable to remote command execution, allowing an attacker to execute arbitrary commands with the privileges of the Langflow process, potentially leading to sensitive data exposure and lateral movement.

Langflow Desktop cve-2026-6543 command execution code injection ibm langflow

3r 1t 1c Apr 30, 2026