Privilege Escalation Vulnerability in Langflow by Langflow Inc.
CVE-2024-7297

Currently unrated

Key Information:

Vendor: Langflow Inc.
Status: Langflow
Vendor: CVE Published:; 30 July 2024

🔔 Create Langflow Inc. Vulnerability Alert

What is CVE-2024-7297?

Langflow versions before 1.0.13 are susceptible to a privilege escalation vulnerability that enables a remote attacker with low privileges to execute a mass assignment request on the '/api/v1/users' endpoint. This flaw can potentially allow unauthorized users to gain super admin privileges, thereby compromising the application's security integrity. It is crucial for users of impacted versions to apply necessary updates to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://www.tenable.com/security/research/tra-2024-26

Timeline

Vulnerability published
Jul 30, 2024

JSON

Langflow Inc.

What is CVE-2024-7297?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.