ByteOS Network

CVE Vulnerability Details :

CVE-2026-48520

PUBLISHED

More Info Official Page

Assigner-GitHub_M

Assigner Org ID-a0819718-46f1-4df5-94e2-005712e83aaa

Published At-23 Jun, 2026 | 16:31

Updated At-23 Jun, 2026 | 16:31

▼CVE Numbering Authority (CNA)

Langflow: Unauthenticated Shareable Playground arbitrary local or S3 file read

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.10.0, the "Shareable Playground" (or "Public Flows" in code) contains a potential arbitrary file-read vulnerability, depending on the exact flow configuration used. By making a flow public, public execution of the flow is allowed. The execution request can contain a list of files that gets read by Langflow and fed into the LLM. The files path can be any path supported by the storage - it can be either a local file or S3 path if supported by the local configuration This vulnerability is fixed in 1.10.0.

Affected Products

Vendor

langflow-ai

Product

langflow

Versions

Affected

< 1.10.0

Problem Types

Type	CWE ID	Description
CWE	CWE-73	CWE-73: External Control of File Name or Path

Type: CWE

CWE ID: CWE-73

Description: CWE-73: External Control of File Name or Path

Metrics

Version	Base score	Base severity	Vector
3.1	6.1	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

Version: 3.1

Base score: 6.1

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

References

Hyperlink	Resource
https://github.com/langflow-ai/langflow/security/advisories/GHSA-rcjh-r59h-gq37	x_refsource_CONFIRM

Hyperlink: https://github.com/langflow-ai/langflow/security/advisories/GHSA-rcjh-r59h-gq37

Resource:

x_refsource_CONFIRM

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References