Description
IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction.
Published: 2026-05-27
Score: 9.8 Critical
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Based on the description, it is inferred that the vulnerability in IBM Langflow OSS versions 1.0.0 to 1.9.1 allows remote code execution by permitting attackers to upload archive files containing symbolic links that point to arbitrary file system paths. The improper validation of these links during extraction enables unauthorized file access and potentially code execution, constituting a severe Path Traversal weakness (CWE‑22).

Affected Systems

Affected are IBM Langflow OSS across all releases from version 1.0.0 through 1.9.1. The vendor recommends upgrading to version 1.9.2 to mitigate the issue.

Risk and Exploitability

Based on the description, it is inferred that the likely attack vector is the remote upload of malicious archive files. The critical severity is reflected in a CVSS score of 9.8, and the vulnerability is not listed in the CISA KEV catalog, though no EPSS data is available. Attackers can exploit the flaw by crafting and uploading archives that the application extracts without sufficient path validation, potentially allowing arbitrary file system access or execution of code on the host. The absence of mitigation controls means the threat is high if the software is publicly facing.

Generated by OpenCVE AI on May 27, 2026 at 21:21 UTC.

Remediation

Vendor Solution

IBM strongly recommends addressing the vulnerability now by upgrading Langflow OSS to version 1.9.2 https://pypi.org/project/langflow/ .

OpenCVE Recommended Actions

  • Upgrade IBM Langflow OSS to version 1.9.2 or later.
  • If an upgrade is not immediately possible, disable or restrict archive extraction functionality to trusted directories and reject files containing symbolic links.
  • Implement validation to reject or resolve symbolic links that resolve outside the intended extraction path, ensuring safe extraction contexts.
  • Monitor system logs for abnormal extraction activities and unauthorized file access attempts to detect exploitation.

Generated by OpenCVE AI on May 27, 2026 at 21:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction.
Title Path Traversal Vulnerability in File Processing Components Allows Unauthorized File System Access and Potential Remote Code Execution
First Time appeared Ibm
Ibm langflow Oss
Weaknesses CWE-22
CPEs cpe:2.3:a:ibm:langflow_oss:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:langflow_oss:1.9.1:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm langflow Oss
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Ibm Langflow Oss
cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published:

Updated: 2026-05-27T13:14:23.238Z

Reserved: 2026-04-30T17:11:41.725Z

Link: CVE-2026-7524

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:35.443

Modified: 2026-05-27T14:53:51.833

Link: CVE-2026-7524

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T21:30:34Z

Weaknesses