Zero Day MonitorZDM

← Back to list

6.5

CVE-2026-42867EXPLOITEDPATCHED

langflow · langflow

Langflow: Path Traversal in Knowledge Bases API via Creation Endpoint

Description

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow is vulnerable to Path Traversal in the Knowledge Bases API (POST /api/v1/knowledge_bases). This occurs because user-supplied knowledge base names are used directly to create file paths without proper sanitization or containment checks. An authenticated attacker can exploit this flaw to create directories and write files anywhere on the server's filesystem. This vulnerability is fixed in 1.9.0.

Affected Products

Vendor	Product	Versions
langflow	langflow	< 1.9.0

References

https://github.com/langflow-ai/langflow/security/advisories/GHSA-79ph-745m-6wxq(x_refsource_CONFIRM)
https://github.com/langflow-ai/langflow/pull/12337(x_refsource_MISC)

Related News (1 articles)

Tier C

VulDB4d ago

CVE-2026-42867 | langflow-ai langflow up to 1.8.x Knowledge Bases API /api/v1/knowledge_bases path traversal (GHSA-79ph-745m-6wxq)

→ No new info (linked only)

CVSS 3.16.5 CRITICAL

VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

langflow@1.9.0

CWECWE-22

PublishedJun 16, 2026

Last enriched4d agov2

Tags

GHSA-79ph-745m-6wxqpipCVE-2026-42867

Trending Score36

Source articles1

Independent1

Info Completeness9/14

Missing: epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-55255EXPKEV

Langflow: IDOR Vulnerability in `/api/v1/responses` Endpoint Allows Authenticated Attackers to Access Another User's Flow

CRITICALCVE-2026-48519EXP

Langflow: Unauthenticated RCE in Shareable Playgrounds

MEDIUMCVE-2026-55446EXP

Langflow: Unauthenticated DoS through multipart form boundary file upload

HIGHCVE-2026-55450EXP

Langflow: Unauthenticated file upload leads to DoS (space exhaustion) and information leak

HIGHCVE-2026-55423

Langflow: Logout button does not clear session

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Jun 16, 2026

Discovered by ZDM

Jun 16, 2026

Actively Exploited

Jun 23, 2026

Patch Available

Jun 23, 2026

Updated: severity, activelyExploited, tags

Jun 23, 2026

Version History

v2

Last enriched 4d ago

v2Tier C4d ago

Updated severity to CRITICAL, marked as actively exploited, and added CVE-2026-42867 as a new tag.

severityactivelyExploitedtags

via VulDB

v111d ago

Initial creation