VulnWatch VulnWatch
← Back to dashboard
Critical nvd · CVE-2026-7524

CVE-2026-7524: IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links duri

Published May 27, 2026 CVSS 9.8

IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction.

Remote Code Execution

Affected AI Products

langflow
View original source
Get the weekly digest. Every Monday: top AI security stories of the week. Free.