PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-8859 IBM CVE debrief

IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow an attacker to write arbitrary files to unintended locations due to improper input validation in the APIRequest component. A path traversal vulnerability exists when the 'Save to File' feature is enabled, where filenames extracted from HTTP response Content-Disposition headers are not sanitized before being joined to the temporary directory path. This vulnerability has a CVSS score of 9.9, classified as CRITICAL. Users of IBM Langflow OSS 1.0.0 through 1.10.0 should apply patches or mitigations to prevent potential arbitrary file writes. The vulnerability arises from the 'Save to File' feature in IBM Langflow OSS, where filenames from HTTP response Content-Disposition headers are not sanitized. This allows attackers to supply crafted filenames with path traversal sequences (e.g., ../), enabling writes to any location accessible by the Langflow process.

Vendor
IBM
Product
Langflow OSS
CVSS
CRITICAL 9.9
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-17
Original CVE updated
2026-07-17
Advisory published
2026-07-17
Advisory updated
2026-07-17

Who should care

Users of IBM Langflow OSS 1.0.0 through 1.10.0 should apply patches or mitigations to prevent potential arbitrary file writes. This includes administrators, security teams, and operators responsible for maintaining and securing the affected systems. They should review system logs for suspicious file writes or modifications and consider compensating controls such as restricting write access to sensitive directories. Additionally, they should ensure that the 'Save to File' feature is properly configured and that input validation and sanitization are performed on filenames extracted from HTTP response Content-Disposition headers.

Technical summary

The vulnerability arises from the 'Save to File' feature in IBM Langflow OSS, where filenames from HTTP response Content-Disposition headers are not sanitized. This allows attackers to supply crafted filenames with path traversal sequences (e.g., ../), enabling writes to any location accessible by the Langflow process. The CVSS score is 9.9, classified as CRITICAL. To mitigate this vulnerability, users should apply patches or updates provided by IBM, disable the 'Save to File' feature if not necessary, and implement additional input validation and sanitization for filenames. Regular security audits and penetration testing should be conducted to identify potential vulnerabilities and ensure the overall security posture of the system.

Defensive priority

High priority due to critical CVSS score of 9.9 and potential for arbitrary file writes. Immediate attention is required to apply patches or mitigations and implement additional security measures to prevent exploitation. Users should review system logs for suspicious file writes or modifications and consider compensating controls such as restricting write access to sensitive directories. Monitoring for potential security incidents and verifying the effectiveness of implemented controls is also recommended. Additionally, users should ensure that the 'Save to File' feature is properly configured and that input validation and sanitization are performed on filenames extracted from HTTP response Content-Disposition headers. Regular security audits and penetration testing should be conducted to identify potential vulnerabilities and ensure the overall security posture of the system. Furthermore, users should stay informed about any updates or patches released by IBM and implement them promptly to prevent exploitation of the vulnerability. By taking these steps, users can help prevent potential security incidents and protect their systems from exploitation. It is also essential to have an incident response plan in place in case of a security breach. This plan should include procedures for containment, eradication, recovery, and post-incident activities. By being proactive and taking a comprehensive approach to security, users can minimize the risk of exploitation and protect their systems from potential security threats. The CVSS score of 9.9 indicates a critical vulnerability that requires immediate attention and mitigation to prevent potential security incidents. The vulnerability can be exploited by attackers to write arbitrary files to unintended locations, which can lead to a range of security incidents, including data breaches and system compromise. Therefore, it is essential to prioritize the mitigation of this vulnerability and take proactive steps to prevent exploitation. By doing so, users can help protect their systems from potential security threats and ensure the confidentiality, integrity, and availability of their data. In addition to applying patches or

Recommended defensive actions

  • Apply patches or updates provided by IBM to fix the path traversal vulnerability
  • Disable the 'Save to File' feature if not necessary
  • Implement additional input validation and sanitization for filenames
  • Monitor for suspicious file writes or modifications
  • Consider compensating controls such as restricting write access to sensitive directories

Evidence notes

Evidence is based on a single source reference from IBM's PSIRT team. Further verification is recommended. The vulnerability has a CVSS score of 9.9, classified as CRITICAL. The 'Save to File' feature in IBM Langflow OSS allows attackers to supply crafted filenames with path traversal sequences, enabling writes to any location accessible by the Langflow process. Users should apply patches or mitigations to prevent potential arbitrary file writes. Additional verification tasks include reviewing system logs for suspicious file writes or modifications and implementing compensating controls such as restricting write access to sensitive directories.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-17T20:17:31.643Z and has not been modified since then.