#langflow

[ follow ]
#cybersecurity #remote-code-execution #vulnerability #cve-2026-33017 #cisa-kev #trend-micro-apex-one
fromThe Hacker News
3 days ago

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

The impact is severe: successful exploitation not only compromises the Langflow instance but also exposes all sensitive access tokens and API keys stored within the workspace. This can trigger a cascading compromise across all integrated downstream services in cloud and SaaS environments.
Information security
#cybersecurity
fromTechzine Global
1 month ago
Information security

Langflow RCE flaw exploited within hours, CISA warns

CISA flagged a critical code injection flaw in Langflow, enabling remote code execution without authentication, with active exploitation confirmed.
fromThe Hacker News
11 months ago
Roam Research

New Flodrix Botnet Variant Exploits Langflow AI Server RCE Bug to Launch DDoS Attacks

Attackers exploit a critical vulnerability in Langflow to deliver Flodrix malware, leading to severe security risks.
more#cybersecurity
Information security
fromThe Hacker News
2 months ago

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

A critical security flaw in Langflow allows unauthenticated remote code execution, exploited within 20 hours of disclosure.
Information security
fromSecurityWeek
2 months ago

Critical Langflow Vulnerability Exploited Hours After Public Disclosure

Threat actors exploited a critical Langflow vulnerability for remote code execution within 20 hours of its public disclosure.
[ Load more ]