CVE-2026-33017: How attackers compromised Langflow AI pipelines in 20 hours

## Executive summary Sysdig Threat Research observed active exploitation of a critical unauthenticated RCE in Langflow (CVE-2026-33017) within ~20 hours of public disclosure: attackers scanned, weaponized the advisory, executed payloads to run shell commands, harvested environment secrets and database credentials, and hosted stage-2 droppers and C2 infrastructure; the report provides timelines, IoCs (source IPs, C2/dropper IPs and URLs, interactsh callback domains), detection rules, and immediate mitigation recommendations.