CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Veracode•added 2024/11/12 2:1 a.m.•8 views

Remote Code Execution (RCE)

Langflow is vulnerable to Remote Code Execution RCE. The vulnerability exists due to insufficient validation in the PythonCodeTool component, which allows attackers to execute arbitrary code remotely...

9.8CVSS8.2AI score0.0911EPSS

Exploits1References2Affected Software1

OSV•added 2024/10/31 3:30 p.m.•7 views

GHSA-56M6-4MHW-H3G5 langflow has vulnerability in PythonCodeTool component

langflow v1.0.12 was discovered to contain a remote code execution RCE vulnerability via the PythonCodeTool component...

9.8CVSS9.9AI score0.0911EPSS

Exploits1References4

Github Security Blog•added 2024/10/31 3:30 p.m.•14 views

langflow has vulnerability in PythonCodeTool component

langflow v1.0.12 was discovered to contain a remote code execution RCE vulnerability via the PythonCodeTool component...

9.8CVSS8.3AI score0.0911EPSS

Exploits1References4Affected Software1

OSV•added 2024/10/31 2:15 p.m.•2 views

CVE-2024-42835

langflow v1.0.12 was discovered to contain a remote code execution RCE vulnerability via the PythonCodeTool component...

9.8CVSS8.6AI score

Exploits0References1

ATTACKERKB•added 2024/10/31 2:15 p.m.•0 views

CVE-2024-42835

langflow v1.0.12 was discovered to contain a remote code execution RCE vulnerability via the PythonCodeTool component...

9.8CVSS6.5AI score0.0911EPSS

Exploits1References2

OSV•added 2024/10/31 2:15 p.m.•3 views

PYSEC-2024-279

langflow v1.0.12 was discovered to contain a remote code execution RCE vulnerability via the PythonCodeTool component...

9.8CVSS6.4AI score0.0911EPSS

Exploits1References1

PyPA•added 2024/10/31 2:15 p.m.•4 views

PYSEC-2024-279

langflow v1.0.12 was discovered to contain a remote code execution RCE vulnerability via the PythonCodeTool component...

9.8CVSS6.4AI score0.0911EPSS

Exploits1References1Affected Software1

NVD•added 2024/10/31 2:15 p.m.•13 views

CVE-2024-42835

langflow v1.0.12 was discovered to contain a remote code execution RCE vulnerability via the PythonCodeTool component...

9.8CVSS0.0911EPSS

Exploits1References1

CNNVD•added 2024/10/31 12:0 a.m.•1 views

Langflow 安全漏洞

Langflow is a visualization framework for building multi-agent and RAG applications from the Langflow open source. A security vulnerability exists in Langflow version v1.0.12 that stems from remote code execution in the PythonCodeTool component...

9.8CVSS7.7AI score0.0911EPSS

Exploits1References1

Vulnrichment•added 2024/10/31 12:0 a.m.•13 views

CVE-2024-42835

langflow v1.0.12 was discovered to contain a remote code execution RCE vulnerability via the PythonCodeTool component...

8.3AI score0.0911EPSS

Exploits1References1

Positive Technologies•added 2024/10/31 12:0 a.m.•2 views

PT-2024-30179 · Langflow · Langflow

Name of the Vulnerable Software and Affected Versions: langflow version 1.0.12 Description: A remote code execution RCE vulnerability was discovered in langflow via the PythonCodeTool component. This issue allows a malicious JSON file to be imported to run arbitrary code on the target system by...

9.8CVSS7.3AI score0.0911EPSS

Exploits1References12

CVE•added 2024/10/31 12:0 a.m.•59 views

CVE-2024-42835

CVE-2024-42835 affects langflow v1.0.12 via the PythonCodeTool component, leading to remote code execution due to insufficient input validation/execution handling. Multiple connected sources (Red Hat, Veracode, OSV, GHSA, CVE listings, PT-Security) confirm an RCE risk through PythonCodeTool, with...

9.8CVSS8.4AI score0.0911EPSS

Exploits1References1Affected Software1