HIGH
Langflow
CVE published 2026-04-30
CVE-2026-4503
CVE-2026-4503 is a high-severity access-control flaw in IBM Langflow Desktop that can let an unauthenticated user view images belonging to other users. The issue is tied to an indirect object reference through a user-controlled key, which aligns with CWE-639 and an NVD CVSS 3.1 score of 7.5. Affected versions are 1.0.0 through 1.8.4.