CVE-2026-3340

MEDIUM NVD

CVSS Score 6.5

Severity MEDIUM

Published Apr 30, 2026

Vendor unknown

Description

IBM Langflow Desktop 1.0.0 through 1.8.4 IBM Langflow is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.

References

https://www.ibm.com/support/pages/node/7271096