ByteOS Network

NVD Vulnerability Details :

CVE-2026-27966

Analyzed

Source-security-advisories@github.com

Published At-26 Feb, 2026 | 02:16

Updated At-28 Feb, 2026 | 00:54

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.8.0, the CSV Agent node in Langflow hardcodes `allow_dangerous_code=True`, which automatically exposes LangChain’s Python REPL tool (`python_repl_ast`). As a result, an attacker can execute arbitrary Python and OS commands on the server via prompt injection, leading to full Remote Code Execution (RCE). Version 1.8.0 fixes the issue.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 9.8

Base severity: CRITICAL

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CPE Matches

langflow>>langflow>>Versions before 1.8.0(exclusive)

cpe:2.3:a:langflow:langflow:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-94	Secondary	security-advisories@github.com

CWE ID: CWE-94

Type: Secondary

Source: security-advisories@github.com

References

Hyperlink	Source	Resource
https://github.com/langflow-ai/langflow/commit/d8c6480daa17b2f2af0b5470cdf5c3d28dc9e508	security-advisories@github.com	Patch
https://github.com/langflow-ai/langflow/security/advisories/GHSA-3645-fxcv-hqr4	security-advisories@github.com	Exploit Vendor Advisory

Hyperlink: https://github.com/langflow-ai/langflow/commit/d8c6480daa17b2f2af0b5470cdf5c3d28dc9e508

Source: security-advisories@github.com

Resource:

Patch

Hyperlink: https://github.com/langflow-ai/langflow/security/advisories/GHSA-3645-fxcv-hqr4

Source: security-advisories@github.com

Resource:

Exploit

Vendor Advisory

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History