GHSA-25hm-qrp9-f25gCriticalCVSS 9.8

IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation...

Published
May 27, 2026
Last Modified
May 27, 2026

🔗 CVE IDs covered (1)

CVE-2026-7524

📋 Description

IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction.

🔗 References (3)