CVE-2026-3345
MEDIUM
NVD
CVSS Score
6.5
Severity
MEDIUM
Published
Apr 30, 2026
Vendor
unknown
Description
IBM Langflow Desktop <=1.8.4 Langflow could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.