IBM Langflow OSS 1.0.0 through 1.10.0 allows...
High severity
Unreviewed
Published
Jul 17, 2026
to the GitHub Advisory Database
•
Updated Jul 17, 2026
Description
Published by the National Vulnerability Database
Jul 17, 2026
Published to the GitHub Advisory Database
Jul 17, 2026
Last updated
Jul 17, 2026
IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated users to override component parameters at runtime via the API. A critical security flaw exists in the parameter filtering mechanism within the
apply_tweaks()function.References