CVE-2026-55447

CRITICAL EPSS 27.7%
Published Jun 23, 20266d ago · Modified Jun 24, 20265d ago
9.6 CVSS 3.1
Critical
Find Similar
Published Jun 23, 2026 6d ago
Last Modified Jun 24, 2026 5d ago

Description

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, by controlling a files that are digested into the RAG, an attacker can direct the node to read any file on the file-system by absolute path. All components based on BaseFileComponent are vulnerable to the vulnerability. This includes Docling (DoclingInlineComponent), Docling Serve, DoclingRemoteComponent), Read File (FileComponent), NVIDIA Retriever Extraction (NvidiaIngestComponent), Video File (VideoFileComponent), and Unstructured API (UnstructuredComponent). This vulnerability is fixed in 1.9.2.

CVSS Details

Base Score
9.6
Exploitability
2.8
Impact
6.0
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction Required
Scope Changed
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
27.7% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 2

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Information Exposure
CWE-61

Affected Products 1

VendorProductVersionRange
langflowlangflow* <1.9.2

References 2

  • github.com https://github.com/langflow-ai/langflow/pull/12945
    Issue TrackingPatch
  • github.com https://github.com/langflow-ai/langflow/security/advisories/GHSA-ccv6-r384-xp75
    ExploitPatchVendor Advisory

Remediation

  • github.com https://github.com/langflow-ai/langflow/pull/12945
    Issue TrackingPatch
  • github.com https://github.com/langflow-ai/langflow/security/advisories/GHSA-ccv6-r384-xp75
    ExploitPatchVendor Advisory