CVE-2026-8056
HIGH
NVD
CVSS Score
8.8
Severity
HIGH
Published
Jul 17, 2026
Vendor
unknown
Description
IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated users to override component parameters at runtime via the API. A critical security flaw exists in the parameter filtering mechanism within the `apply_tweaks()` function.