Description
IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) vulnerability in the URL component ( src/lfx/src/lfx/components/data_source/url.py ) due to a Time-of-Check/Time-of-Use (TOCTOU) race condition that can be exploited via DNS rebinding.
Published: 2026-06-30
Score: 7.1 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a time‑of‑check/time‑of‑use race condition in the URL component of IBM Langflow OSS (src/lfx/src/lfx/components/data_source/url.py) that allows an attacker to perform DNS rebinding and bypass the built‑in SSRF protection. By manipulating the DNS resolution timing, an attacker can cause the application to discover and contact internal services that would normally be forbidden, enabling information disclosure or credential theft. The weakness causes an untrusted external request to be interpreted as an internal one, leading to typical SSRF exploitation possibilities such as accessing the admin console, internal databases or other internal APIs.

Affected Systems

The affected product is IBM Langflow OSS, specifically versions 1.0.0 through 1.9.3 inclusive. The vulnerability does not affect later releases such as 1.10.0, identified by the CVE references and the CNA solution.

Risk and Exploitability

The CVSS score of 7.1 indicates a high severity for confidentiality, integrity, and availability impact, though the EPSS score is not available and the vulnerability is not listed in the CISA KEV catalog. The attack can be carried out by sending crafted DNS responses that cause the application to connect to an internal host, but it requires the attacker to control the DNS resolution for the target hostname or to conduct DNS rebinding, thus limiting the threat to attackers who can influence the client’s DNS queries or compromise a DNS server. Nevertheless, the potential damage—remote disclosure of internal data and possible further lateral movement—warrants prompt remediation.

Generated by OpenCVE AI on June 30, 2026 at 21:22 UTC.

Remediation

Vendor Solution

IBM strongly recommends addressing the vulnerability now by upgrading Langflow OSS to version 1.10.0 https://pypi.org/project/langflow/


OpenCVE Recommended Actions

  • Upgrade IBM Langflow OSS to version 1.10.0 or later to correct the race‑condition bug.
  • Disable or restrict DNS rebinding by ensuring the application only accepts fully qualified domain names that resolve to trusted IP ranges and by configuring DNS servers to reject rebinding attempts.
  • Enforce strict outbound network filtering to block connections from the application to internal IP blocks that are not otherwise required, thereby limiting the impact of any remaining SSRF abilities.

Generated by OpenCVE AI on June 30, 2026 at 21:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 30 Jun 2026 20:15:00 +0000

Type Values Removed Values Added
Description IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) vulnerability in the URL component ( src/lfx/src/lfx/components/data_source/url.py ) due to a Time-of-Check/Time-of-Use (TOCTOU) race condition that can be exploited via DNS rebinding.
Title DNS Rebinding TOCTOU Bypass of SSRF Protection in Langflow OSS URL Component
First Time appeared Ibm
Ibm langflow Oss
Weaknesses CWE-918
CPEs cpe:2.3:a:ibm:langflow_oss:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:langflow_oss:1.9.3:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm langflow Oss
References
Metrics cvssV3_1

{'score': 7.1, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N'}


Subscriptions

Ibm Langflow Oss
cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published:

Updated: 2026-06-30T19:54:21.177Z

Reserved: 2026-06-01T13:00:40.177Z

Link: CVE-2026-10546

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-30T21:30:17Z

Weaknesses
  • CWE-918

    Server-Side Request Forgery (SSRF)