virus logo Intrusion Prevention

Langflow.validate_code.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt to exploit a Remote Code Execution vulnerability in Langflow.
The vulnerability is due to a lack of input validation when handling requests. A remote attacker can exploit this vulnerability by sending maliciously crafted requests to the vulnerable server. Successful exploitation could result in arbitrary code execution in the security context of the application.

description-logoOutbreak Alert

FortiGuard Labs has observed a significant uptick in attacks targeting Langflow, leveraging a recently discovered authentication bypass vulnerability that allows unauthenticated remote attackers to fully compromise affected servers.

View the full Outbreak Alert Report

affected-products-logoAffected Products

Langflow prior to 1.3.0

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://github.com/langflow-ai/langflow

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2025-06-18 33.030
Modified
 Sig Added
2025-05-15 32.009
Modified
 Default_action:pass:drop
2025-04-30 31.999
New
ID 57790
Created Apr 15, 2025
Updated Jun 18, 2025
CVE ID
Tags Langflow Unauth RCE Threat Signal
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Known Exploited Yes
Exploit Prediction Score 92.08%
Default Action drop
Active
Affected OS Windows, Linux, MacOS
Affected App Other
Profile Type Code Injection