Critical Langflow Flaws Allow Unauthenticated Remote Code Execution
ID: a656ced3-06e6-5487-81f0-699000a61a4f
STIX ID: report--a656ced3-06e6-5487-81f0-699000a61a4f
Feed Name: securityonline.info
Threat Score
Langflow OSS is affected by two critical vulnerabilities—a CVSS 10 unauthenticated RCE in the PythonREPLComponent (builtins injection) and an authorization bypass in the MCP transport endpoint—that together allow unauthenticated attackers to execute code and access protected project resources; immediate remediation is to upgrade to Langflow 1.9.4, disable AUTO_LOGIN, and keep instances off the public internet.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
