Description
IBM Langflow OSS 1.0.0 through 1.9.1 could allow an authenticated user to read or modify sensitive information by bypassing authentication using insecure direct object references.
Published: 2026-06-11
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an insecure direct object reference that allows an authenticated user to bypass authentication controls and read or modify sensitive information. This flaw exposes both the confidentiality and integrity of data stored in the application. The attack requires the attacker to be authenticated, but the IDOR permits escalated access to data normally protected by object-level permissions.

Affected Systems

IBM Langflow OSS is affected in versions 1.0.0 and 1.9.1. These vulnerable releases are listed in the CPE data. Version 1.9.2 or later incorporates the vendor’s fix.

Risk and Exploitability

The CVSS score of 7.5 denotes a high severity. No EPSS score is provided, and the vulnerability is not listed in the CISA KEV catalog, indicating no known widespread exploitation. Exploitation would require an authenticated user to manipulate object identifiers to access sensitive information beyond their authorized scope. Given the severity and lack of widespread exploitation evidence, organizations should treat this as a significant risk pending mitigation.

Generated by OpenCVE AI on June 11, 2026 at 21:15 UTC.

Remediation

Vendor Solution

IBM strongly recommends addressing the vulnerability now by upgrading Langflow OSS to version 1.9.2 https://pypi.org/project/langflow/ .


OpenCVE Recommended Actions

  • Upgrade IBM Langflow OSS to version 1.9.2 or later to incorporate the vendor’s fix.
  • Re‑implement authorization checks for endpoints that expose sensitive information to ensure only properly authenticated and authorized users can access them.
  • Validate all object identifiers against the ownership and permission context of the currently authenticated user before processing them to prevent IDOR patterns.

Generated by OpenCVE AI on June 11, 2026 at 21:15 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 16 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Langflow
Langflow langflow
CPEs cpe:2.3:a:langflow:langflow:*:*:*:*:*:*:*:*
Vendors & Products Langflow
Langflow langflow

Thu, 11 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 11 Jun 2026 15:30:00 +0000

Type Values Removed Values Added
Description IBM Langflow OSS 1.0.0 through 1.9.1 could allow an authenticated user to read or modify sensitive information by bypassing authentication using insecure direct object references.
Title Unauthenticated Session History Access via Public Flow Execution
First Time appeared Ibm
Ibm langflow Oss
Weaknesses CWE-639
CPEs cpe:2.3:a:ibm:langflow_oss:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:langflow_oss:1.9.1:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm langflow Oss
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}


Subscriptions

Ibm Langflow Oss
Langflow Langflow
cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published:

Updated: 2026-06-11T16:08:51.540Z

Reserved: 2026-05-04T16:07:56.098Z

Link: CVE-2026-7787

cve-icon Vulnrichment

Updated: 2026-06-11T16:08:37.979Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-11T16:16:25.090

Modified: 2026-06-16T14:58:15.150

Link: CVE-2026-7787

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-11T22:00:07Z

Weaknesses
  • CWE-639

    Authorization Bypass Through User-Controlled Key