6.1

CVE-2026-48520

Exploit

EPSS 0.22%
Veröffentlicht 23.06.2026 16:31:27
Zuletzt bearbeitet 26.06.2026 17:06:40
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Langflow: Unauthenticated Shareable Playground arbitrary local or S3 file read

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.10.0, the "Shareable Playground" (or "Public Flows" in code) contains a potential arbitrary file-read vulnerability, depending on the exact flow configuration used. By making a flow public, public execution of the flow is allowed. The execution request can contain a list of files that gets read by Langflow and fed into the LLM. The files path can be any path supported by the storage - it can be either a local file or S3 path if supported by the local configuration This vulnerability is fixed in 1.10.0.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Langflow ≫ Langflow Version < 1.10.0

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.22%	0.121

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	6.1	1.6	4	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

CWE-73 External Control of File Name or Path

The product allows user input to control or influence paths or file names that are used in filesystem operations.

https://github.com/langflow-ai/langflow/security/advisories/GHSA-rcjh-r59h-gq37

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2026-48520

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-48520

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-48520

EUVD