Langflow Vulnerabilities

pip LLM Frameworks

AI Threat Alert tracks 57 known vulnerabilities in Langflow, 17 rated critical — an AI/ML llm frameworks in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
77
Risk Score
57
Total CVEs
17
Critical
pip
Ecosystem
Jun 22, 2026
Last CVE
40%
Patch Rate
67d
Avg Time to Patch
150,141 stars 9,356 forks 989 issues Last push Jun 28, 2026
View on GitHub

Known Vulnerabilities (57 total, page 2 of 3)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2026-3340 IBM Langflow: SSRF enables internal network enumeration 6.5 Apr 30, 2026 LOW CVE-2026-6600 Langflow: stored XSS in chat message editor 3.5 Apr 20, 2026 MEDIUM CVE-2026-6599 Langflow: MCP config injection via X-Forwarded-For header 6.3 Apr 20, 2026 MEDIUM CVE-2026-6598 Langflow: cleartext auth storage exposes API keys 4.3 Apr 20, 2026 LOW CVE-2026-6597 langflow: Plaintext credential storage via Flow API 2.7 Apr 20, 2026 HIGH CVE-2026-6596 Langflow: unauthenticated file upload allows RCE 7.3 Apr 20, 2026 HIGH CVE-2026-3357 Langflow: deserialization RCE via FAISS component default 8.8 Apr 8, 2026 UNKNOWN CVE-2026-34046 Langflow: IDOR exposes flows and plaintext API keys -- Mar 27, 2026 UNKNOWN CVE-2026-33873 Langflow: server-side RCE via LLM-generated code exec -- Mar 27, 2026 HIGH CVE-2026-33497 langflow: Path Traversal enables file access 7.5 Mar 24, 2026 HIGH CVE-2026-33484 langflow: Access Control bypass enables privilege escalation 7.5 Mar 24, 2026 CRITICAL CVE-2026-33475 langflow: security flaw enables exploitation 9.1 Mar 24, 2026 CRITICAL CVE-2026-33309 langflow: Path Traversal enables file access 9.9 Mar 24, 2026 HIGH CVE-2026-33053 langflow: IDOR enables unauthorized data access 8.8 Mar 20, 2026 CRITICAL CVE-2026-33017 langflow: Code Injection enables RCE 9.8 Mar 20, 2026 CRITICAL CVE-2026-27966 langflow: Code Injection enables RCE 9.8 Feb 26, 2026 UNKNOWN CVE-2026-0772 langflow: Deserialization enables RCE -- Jan 23, 2026 UNKNOWN CVE-2026-0771 langflow: Code Injection enables RCE -- Jan 23, 2026 HIGH CVE-2026-0770 langflow: security flaw enables exploitation -- Jan 23, 2026 UNKNOWN CVE-2026-0769 langflow: Code Injection enables RCE -- Jan 23, 2026 UNKNOWN CVE-2026-0768 langflow: Code Injection enables RCE -- Jan 23, 2026 CRITICAL CVE-2026-21445 langflow: Missing Auth allows unauthenticated access 9.1 Jan 2, 2026 HIGH CVE-2025-68478 langflow: File Control enables path manipulation 7.1 Dec 19, 2025 MEDIUM CVE-2025-68477 langflow: SSRF allows internal network access 6.5 Dec 19, 2025 HIGH CVE-2025-34291 langflow: security flaw enables exploitation 8.8 Dec 5, 2025

Showing 26–50 of 57

Frequently asked questions

What is Langflow?

Langflow is an AI/ML llm frameworks tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does Langflow have?

Langflow has 57 known CVEs, 17 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is Langflow distributed in?

Langflow is distributed via the pip ecosystem and categorized as llm frameworks.

Where does the Langflow vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of Langflow?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor Langflow in your stack

Get instant alerts when new vulnerabilities affect Langflow. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring