CVE-2026-7664— Unauthenticated Flow Execution via Webhook Endpoint in Langflow OSS
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-7664
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Unauthenticated Flow Execution via Webhook Endpoint in Langflow OSS
Source: NVD (National Vulnerability Database)
Vulnerability Description
IBM Langflow OSS 1.0.0 through 1.8.4 could allow unauthenticated attackers to access protected MCP project resources and execute MCP operations due to improper authorization enforcement in the Streamable MCP transport endpoint.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
认证机制不恰当
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| IBM | Langflow OSS | 1.0.0 ~ 1.8.4 | cpe:2.3:a:ibm:langflow_oss:1.0.0:*:*:*:*:*:*:* |
II. Public POCs for CVE-2026-7664
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-7664
请登录查看更多情报信息。
Other References for CVE-2026-7664 (1)
Same Patch Batch · IBM · 2026-06-22 · 21 CVEs total
| CVE-2026-10561 | 10.0 CRITICAL | Unauthenticated Remote Code Execution in Langflow OSS PythonREPLComponent via Builtins Inj |
| CVE-2026-12628 | 9.1 CRITICAL | Hardcoded credential in the IBM Storage Protect Snapshot For Windows leads to unauthorized |
| CVE-2026-9072 | 8.1 HIGH | WebSphere Application Server is Affected By Denial of Service, HTTP Request Smuggling, and |
| CVE-2026-9071 | 7.5 HIGH | IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by |
| CVE-2026-8858 | 7.5 HIGH | WebSphere Application Server is Affected By Denial of Service, HTTP Request Smuggling, and |
| CVE-2026-9006 | 7.4 HIGH | IBM WebSphere Application Server is affected by server-side request forgery |
| CVE-2026-8646 | 7.4 HIGH | IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by |
| CVE-2024-54178 | 6.5 MEDIUM | Multiple vulnerabilities affect IBM Db2® on Cloud Pak for Data, and Db2 Warehouse on Cloud |
| CVE-2024-51454 | 6.5 MEDIUM | IBM Engineering Lifecycle Management - Engineering Workflow Management is impacted by vuln |
| CVE-2026-8059 | 6.1 MEDIUM | Multiple Vulnerabilities in IBM Datacap |
| CVE-2025-2669 | 6.0 MEDIUM | Multiple vulnerabilities affect IBM Db2® on Cloud Pak for Data, and Db2 Warehouse on Cloud |
| CVE-2026-9320 | 5.9 MEDIUM | IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by |
| CVE-2026-10852 | 5.9 MEDIUM | Websphere Application Server is Affected By a Denial of Service in IBM WebSphere Applicati |
| CVE-2026-8636 | 5.5 MEDIUM | Multiple Vulnerabilities in IBM Datacap |
| CVE-2026-11372 | 5.4 MEDIUM | IBM TRIRIGA Cross-Site Scripting Vulnerability |
| CVE-2025-33128 | 5.4 MEDIUM | IBM Engineering Lifecycle Management - Engineering Workflow Management is impacted by vuln |
| CVE-2023-33854 | 5.3 MEDIUM | Multiple vulnerabilities affect IBM Db2® on Cloud Pak for Data, and Db2 Warehouse on Cloud |
| CVE-2026-7253 | 5.3 MEDIUM | IBM Watson Speech Services Cartridge is vulnerable to Server-Side Request Forgery (SSRF) i |
| CVE-2026-9610 | 2.3 LOW | Multiple Vulnerabilities in IBM Datacap |
| CVE-2026-10845 | IBM WebSphere Application Server is affected by an authentication bypass vulnerability |
IV. Related Vulnerabilities
Same product: Langflow OSS
- CVE-2026-10561
Unauthenticated Remote Code Execution in Langflow OSS Python - CVE-2026-7787
Unauthenticated Session History Access via Public Flow Execu - CVE-2026-7528
Unauthenticated File Upload Vulnerability Allows Disk Space - CVE-2026-7524
Path Traversal Vulnerability in File Processing Components A - CVE-2026-6542
Monitor API allows cross-user read of transaction logs and d
Same vendor: IBM
- CVE-2026-10852
Websphere Application Server is Affected By a Denial of Serv - CVE-2026-7253
IBM Watson Speech Services Cartridge is vulnerable to Server - CVE-2026-9320
IBM WebSphere Application Server and WebSphere Application S - CVE-2026-9071
IBM WebSphere Application Server and WebSphere Application S - CVE-2026-9006
IBM WebSphere Application Server is affected by server-side
Same weakness: CWE-287
- CVE-2026-11703
Missing SNI/ALPN binding on stateful (session-ID) TLS sessio - CVE-2026-55962
TLS 1.3 post-handshake authentication: server accepts Finish - CVE-2026-54089
File Browser: Authentication Bypass via Proxy Auth Header Fo - CVE-2026-55759
Rocket.Chat: Apple Sign-In skips JWT claims validation, allo - CVE-2026-55666
Rocket.Chat: Email Parameter Fallback Leads To Account Takeo
V. Comments for CVE-2026-7664
No comments yet