Langflow < 1.3.0 Unauthenticated RCE via /api/v1/validate/code

Advisories

severity: critical
date: April 7, 2025
Affecting: langflow-ai/langflow < 1.3.0
CVE: CVE-2025-3248
CWE: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CWE-269 Improper Privilege Management
CWE-288 Authentication Bypass Using an Alternate Path or Channel
CVSS: 9.3
CVSS V4 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References: Langflow Release Notes
Langflow Patch PR
Horizon3.ai Disclosure
Credit: Naveen Sunkavally of Horizon3.ai
VulnCheck KEV: This advisory is in the VulnCheck KEV database