CVE-2026-33873 | langflow-ai langflow up to 1.8.x Agentic Assistant Feature code injection (GHSA-v8hw-mh8c-jxfc)

Inserito da Angelo Barbosa | Mar 27, 2026 | CVE

A vulnerability has been found in langflow-ai langflow up to 1.8.x and classified as critical. This affects an unknown part of the component Agentic Assistant Feature. The manipulation leads to code injection.

This vulnerability is listed as CVE-2026-33873. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.

CVE-2026-33873 | langflow-ai langflow up to 1.8.x Agentic Assistant Feature code injection (GHSA-v8hw-mh8c-jxfc)

Post correlati

CVE-2022-49944 | Linux Kernel up to 5.19.7 ucsi_unregister_connectors null pointer dereference

CVE-2025-37095 | HPE StoreOnce Software up to 4.3.10 path traversal

CVE-2025-6669 | gooaclok819 sublinkX up to 1.8 middlewares/jwt.go hard-coded key (Issue 69)

CVE-2024-47660 | Linux Kernel up to 5.10.225/5.15.166/6.1.108/6.6.49/6.10.8 fsnotify __fsnotify_update_child_dentry_flags Privilege Escalation