Langflow Vulnerabilities

pip LLM Frameworks

AI Threat Alert tracks 57 known vulnerabilities in Langflow, 17 rated critical — an AI/ML llm frameworks in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
77
Risk Score
57
Total CVEs
17
Critical
pip
Ecosystem
Jun 22, 2026
Last CVE
40%
Patch Rate
67d
Avg Time to Patch
150,141 stars 9,356 forks 989 issues Last push Jun 28, 2026
View on GitHub

Known Vulnerabilities (57 total, page 1 of 3)

Severity CVE ID Summary CVSS Published
CRITICAL CVE-2026-7664 Langflow: auth bypass in MCP endpoint, CVSS 9.8 9.8 Jun 22, 2026 CRITICAL CVE-2026-10561 Langflow: auth bypass + unauthenticated RCE (CVSS 10) 10.0 Jun 22, 2026 MEDIUM CVE-2026-12822 Langflow: code injection via Bundle URL Loader (PoC) 5.3 Jun 21, 2026 CRITICAL CVE-2026-55255 Langflow: IDOR allows cross-user flow execution 9.9 Jun 19, 2026 MEDIUM CVE-2026-55423 Langflow: logout fails to clear session tokens 6.1 Jun 19, 2026 HIGH CVE-2026-55446 Langflow: pre-auth DoS via malformed multipart boundary 7.5 Jun 19, 2026 CRITICAL CVE-2026-55447 Langflow: TAR symlink traversal enables full RCE 9.6 Jun 19, 2026 CRITICAL CVE-2026-55450 Langflow: unauthenticated upload → DoS + path disclosure 9.3 Jun 17, 2026 HIGH CVE-2026-33760 Langflow: IDOR exposes cross-user LLM data and deletion 8.8 Jun 16, 2026 MEDIUM CVE-2026-42867 Langflow: path traversal enables arbitrary file write 6.5 Jun 16, 2026 CRITICAL CVE-2026-48519 Langflow: unauthenticated RCE via Shareable Playground 9.6 Jun 16, 2026 MEDIUM CVE-2026-48520 Langflow: unauth file read via Shareable Playground 6.1 Jun 16, 2026 HIGH CVE-2026-7787 Langflow: IDOR bypasses auth, exposes sensitive AI configs 8.1 Jun 11, 2026 MEDIUM CVE-2026-3341 Langflow: SSRF exposes internal ML infrastructure 5.4 Jun 11, 2026 HIGH CVE-2026-7528 Langflow: DoS via uncontrolled resource consumption 7.5 May 27, 2026 CRITICAL CVE-2026-7524 Langflow: RCE via symlink traversal in archive extraction 9.8 May 27, 2026 CRITICAL CVE-2026-42048 Langflow: path traversal allows arbitrary directory deletion 9.6 May 5, 2026 MEDIUM CVE-2026-7700 Langflow: eval() code injection → remote code execution 6.3 May 3, 2026 MEDIUM CVE-2026-7687 Langflow: command injection in code parser enables RCE 6.3 May 3, 2026 HIGH CVE-2026-6543 Langflow: RCE exposes API keys and DB credentials 8.8 Apr 30, 2026 HIGH CVE-2026-6542 Langflow: IDOR exposes cross-tenant flow data and deletion 8.1 Apr 30, 2026 MEDIUM CVE-2026-3345 Langflow: path traversal allows arbitrary file read 6.5 Apr 30, 2026 HIGH CVE-2026-4503 Langflow Desktop: IDOR leaks user images unauthenticated 7.5 Apr 30, 2026 MEDIUM CVE-2026-4502 Langflow: path traversal enables arbitrary file write 6.5 Apr 30, 2026 MEDIUM CVE-2026-3346 Langflow Desktop: stored XSS enables credential theft 6.4 Apr 30, 2026

Showing 1–25 of 57

Frequently asked questions

What is Langflow?

Langflow is an AI/ML llm frameworks tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does Langflow have?

Langflow has 57 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is Langflow distributed in?

Langflow is distributed via the pip ecosystem and categorized as llm frameworks.

Where does the Langflow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of Langflow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor Langflow in your stack

Get instant alerts when new vulnerabilities affect Langflow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring