CVE-2026-7755
Received Received - Intake

Remote Code Execution in IBM Langflow OSS

Vulnerability report for CVE-2026-7755, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-17

Last updated on: 2026-07-17

Assigner: IBM Corporation

Description

IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow remote code execution due to incomplete validation enforcement on MCP server configuration files.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-17
Last Modified
2026-07-17
Generated
2026-07-18
AI Q&A
2026-07-17
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
ibm langflow From 1.0.0 (inc) to 1.10.0 (inc)
ibm langflow_oss From 1.0.0 (inc) to 1.10.0 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-7755 is a validation bypass vulnerability in IBM Langflow OSS versions 1.0.0 through 1.10.0. It allows authenticated attackers to upload malicious MCP server configuration files without proper validation. The file upload endpoint accepted specific JSON files without checking for dangerous content, while the structured API enforced validation. This bypass could lead to remote code execution when malicious configurations spawn processes with attacker-controlled environment variables.

Detection Guidance

Check for unauthorized or suspicious MCP server configuration files named _mcp_servers_<user_id>.json in Langflow OSS installations. Review file upload endpoints and process execution logs for unexpected MCP server spawns or environment variables.

Impact Analysis

If you use Langflow OSS versions 1.0.0 to 1.10.0, an authenticated attacker could exploit this to execute arbitrary code on your system. This could allow unauthorized access, data theft, or system compromise. The impact depends on your environment and privileges, but the high CVSS score indicates significant risk.

Compliance Impact

This vulnerability could lead to unauthorized access or data breaches, which may violate GDPR, HIPAA, or other regulations. Compliance requires protecting sensitive data, and a remote code execution flaw undermines those protections. Organizations must remediate this issue to maintain compliance.

Mitigation Strategies

Upgrade Langflow OSS to version 1.10.1 or later immediately. Remove any untrusted MCP server configuration files and audit file upload endpoints for proper validation enforcement.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-7755. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart