CVE-2026-42867 langflow-ai CVE debrief

Who should care

Langflow users and administrators should be aware of this vulnerability and take immediate action to update to version 1.9.0 or apply compensating controls. Security teams should prioritize patching and monitoring for potential exploitation attempts. This vulnerability requires authentication, but the potential impact is significant, allowing attackers to manipulate the server's filesystem.

Technical summary

The vulnerability in Langflow's Knowledge Bases API allows an authenticated attacker to perform Path Traversal attacks. This occurs because user-supplied knowledge base names are used directly to create file paths without proper sanitization or containment checks. The CVSS vector for this vulnerability is CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L, indicating a Network attack vector with Low complexity and privileges required. The weakness associated with this vulnerability is CWE-22, Improper Limitation of a Pathname to a Restricted Directory.

Defensive priority

Patching to version 1.9.0 is the primary recommended action. In the absence of a patch, defenders should implement compensating controls such as input validation and monitoring for suspicious filesystem activity.

Recommended defensive actions

• Apply the patch by updating to Langflow version 1.9.0 or later.
• Implement input validation for knowledge base names to prevent Path Traversal attacks.
• Monitor for suspicious filesystem activity and adjust logging as necessary.
• Restrict access to the Knowledge Bases API to only necessary users and services.
• Perform a thorough inventory of Langflow installations and prioritize patching.

Evidence notes

The CVE record and NVD detail provide official information about the vulnerability. The source item URL provides additional metadata and references. The patch and advisory are available on the Langflow GitHub repository.

Official resources