← signals
2026-07-06·LANGFLOW·security risk
highdown

Between June 16 and June 29, 2026, Langflow disclosed a series of critical vulnerabilities (CVE-2026-42867,...

Between June 16 and June 29, 2026, Langflow disclosed a series of critical vulnerabilities (CVE-2026-42867, CVE-2026-55423, CVE-2026-33760, CVE-2026-55447, CVE-2026-55255, CVE-2026-55446, CVE-2026-48520, CVE-2026-48519, CVE-2026-55450, and others) via OSV advisories.

window 60devidence 21confidence score 100

confidence score

Strong evidence: 2 independent source classes support this read.

100
high confidence2 independent source classesotherpasses publish gate

signal brief

Between June 16 and June 29, 2026, Langflow disclosed a series of critical vulnerabilities (CVE-2026-42867, CVE-2026-55423, CVE-2026-33760, CVE-2026-55447, CVE-2026-55255, CVE-2026-55446, CVE-2026-48520, CVE-2026-48519, CVE-2026-55450, and others) via OSV advisories. These include unauthenticated remote code execution (RCE) in Shareable Playgrounds (source 16), path traversal in Knowledge Bases API (source 2 and source 19), IDOR/BOLA vulnerabilities in monitor and responses endpoints (source 4, source 6), arbitrary file read through public flows (source 8), and denial-of-service via unauthenticated file upload (source 10). The vulnerabilities affect versions prior to patches released in 1.7.0, 1.9.0, 1.9.1, 1.9.2, 1.10.0, etc. A new dev release 1.11.0.dev33 (source 1) suggests ongoing development, but the volume and severity of CVEs erode trust. Enterprise users may delay adoption until security posture is proven.

What the sources said:

  • Source 16: "Prior to 1.9.2, the 'Shareable Playground' ... contains a critical RCE vulnerability."
  • Source 4: "Langflow's /api/v1/monitor router exposes 7 endpoints ... without verifying that the authenticated requester owns the targeted resource."
  • Source 10: "Prior to 1.9.1, unauthenticated users can upload any amount of data ... without any limitations."
  • Source 2: "Langflow: Path Traversal in Knowledge Bases API via Creation Endpoint."

source data used

Decision support, not stock advice. This signal is research with cited evidence — not a recommendation to buy, sell, or hold any security.