Langflow AI Pipeline RCE Exploited Within 20 Hours to Steal Keys and Credentials
ID: 5503dcf4-f7c2-50d6-b971-66e936da2cde
STIX ID: report--5503dcf4-f7c2-50d6-b971-66e936da2cde
Feed Name: Cyber Press
A critical unauthenticated RCE (CVE-2026-33017) was disclosed in Langflow allowing arbitrary Python execution via the POST /api/v1/build_public_tmp/{flow_id}/flow endpoint; attackers began exploiting the flaw within ~20 hours of disclosure to execute commands, exfiltrate data, harvest environment secrets and deliver stage‑2 payloads. Multiple attacker classes and IPs were observed performing automated Nuclei scanning, custom reconnaissance and credential extraction; defenders are advised to patch immediately, restrict or authenticate the public build endpoint, rotate exposed API/cloud credentials, and deploy runtime detection for shell spawning and sensitive file reads.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
