AI Threat Alert
Langflow
pip LLM Frameworks73
Total CVEs
17
Critical
pip
Ecosystem
Mar 27, 2026
Last CVE
Known Vulnerabilities (30+ shown)
Severity CVE ID Summary CVSS Published
UNKNOWN CVE-2026-34046 Langflow: IDOR exposes flows and plaintext API keys -- Mar 27, 2026 UNKNOWN CVE-2026-33873 Langflow: server-side RCE via LLM-generated code exec -- Mar 27, 2026 HIGH CVE-2026-33497 langflow: Path Traversal enables file access 7.5 Mar 24, 2026 HIGH CVE-2026-33484 langflow: Access Control bypass enables privilege escalation 7.5 Mar 24, 2026 CRITICAL CVE-2026-33475 langflow: security flaw enables exploitation 9.1 Mar 24, 2026 CRITICAL CVE-2026-33309 langflow: Path Traversal enables file access 9.9 Mar 24, 2026 HIGH CVE-2026-33053 langflow: IDOR enables unauthorized data access 8.8 Mar 20, 2026 HIGH CVE-2026-33053 langflow: IDOR enables unauthorized data access 8.8 Mar 20, 2026 HIGH CVE-2026-33053 langflow: IDOR enables unauthorized data access 8.8 Mar 20, 2026 CRITICAL CVE-2026-33017 langflow: Code Injection enables RCE 9.8 Mar 20, 2026 CRITICAL CVE-2026-27966 langflow: Code Injection enables RCE 9.8 Feb 26, 2026 CRITICAL CVE-2026-27966 langflow: Code Injection enables RCE 9.8 Feb 26, 2026 CRITICAL CVE-2026-27966 langflow: Code Injection enables RCE 9.8 Feb 26, 2026 CRITICAL CVE-2026-27966 langflow: Code Injection enables RCE 9.8 Feb 26, 2026 UNKNOWN CVE-2026-0772 langflow: Deserialization enables RCE -- Jan 23, 2026 UNKNOWN CVE-2026-0771 langflow: Code Injection enables RCE -- Jan 23, 2026 HIGH CVE-2026-0770 langflow: security flaw enables exploitation -- Jan 23, 2026 HIGH CVE-2026-0770 langflow: security flaw enables exploitation -- Jan 23, 2026 UNKNOWN CVE-2026-0769 langflow: Code Injection enables RCE -- Jan 23, 2026 UNKNOWN CVE-2026-0768 langflow: Code Injection enables RCE -- Jan 23, 2026 CRITICAL CVE-2026-21445 langflow: Missing Auth allows unauthenticated access 9.1 Jan 2, 2026 CRITICAL CVE-2026-21445 langflow: Missing Auth allows unauthenticated access 9.1 Jan 2, 2026 HIGH CVE-2025-68478 langflow: File Control enables path manipulation 7.1 Dec 19, 2025 HIGH CVE-2025-68478 langflow: File Control enables path manipulation 7.1 Dec 19, 2025 MEDIUM CVE-2025-68477 langflow: SSRF allows internal network access 6.5 Dec 19, 2025 MEDIUM CVE-2025-68477 langflow: SSRF allows internal network access 6.5 Dec 19, 2025 HIGH CVE-2025-34291 langflow: security flaw enables exploitation 8.8 Dec 5, 2025 HIGH CVE-2025-34291 langflow: security flaw enables exploitation 8.8 Dec 5, 2025 HIGH CVE-2025-57760 Langflow: privilege escalation to full superuser via CLI 8.8 Aug 25, 2025 HIGH CVE-2025-57760 Langflow: privilege escalation to full superuser via CLI 8.8 Aug 25, 2025 Monitor Langflow in your stack
Get instant alerts when new vulnerabilities affect Langflow. CISO analysis, ATLAS technique mappings, and compliance reports included.
Start Monitoring