CVE-2026-7872
Received Received - Intake

IBM Langflow OSS File Read and Authentication Bypass

Vulnerability report for CVE-2026-7872, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-17

Last updated on: 2026-07-17

Assigner: IBM Corporation

Description

IBM Langflow OSS 1.0.0 through 1.10.0 allows an authenticated attacker to read arbitrary files including the JWT signing key and forge authentication tokens for any user.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-17
Last Modified
2026-07-17
Generated
2026-07-18
AI Q&A
2026-07-18
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
ibm langflow_oss From 1.0.0 (inc) to 1.10.0 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-7872 is a path traversal vulnerability in IBM Langflow OSS versions 1.0.0 through 1.10.0. It allows an authenticated attacker to upload a malicious tar archive containing symbolic links. The application's path validation incorrectly resolves these links before writing to disk, letting the attacker read arbitrary files accessible to the application, including the JWT signing key.

Detection Guidance

Check Langflow OSS versions 1.0.0 through 1.10.0 for the File component. Look for unauthorized file reads or unusual symbolic link handling in logs. Inspect uploaded tar archives for malicious symbolic links targeting sensitive paths like JWT keys or configuration files.

Impact Analysis

An attacker could exploit this to read sensitive files like JWT signing keys, database files, or environment variables. This enables forging authentication tokens for any user, including admins, leading to unauthorized access to the system and potential data breaches.

Compliance Impact

This vulnerability could lead to unauthorized access to sensitive data, violating GDPR's data protection requirements and HIPAA's safeguards for protected health information. Organizations using affected versions may face compliance violations, legal penalties, and reputational damage.

Mitigation Strategies

Upgrade Langflow OSS to version 1.10.1 or later immediately. Remove or restrict access to the File component if not essential. Review system logs for signs of exploitation and revoke any potentially compromised JWT tokens.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-7872. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart