HackerFeeds
All CVEs

CVE-2026-8635

CRITICAL9.9

Published 2026-07-17 · Source psirt@us.ibm.com

Description

IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated users to escalate privileges to superuser by directly manipulating the database, execute arbitrary system commands, and achieve full system compromise with Langflow service permissions.

CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-94
View on NVD