Parameter Filtering Flaw in IBM Langflow Affects Multiple Versions
CVE-2026-8056
8.8HIGH
What is CVE-2026-8056?
A vulnerability has been identified in IBM Langflow OSS from version 1.0.0 to 1.10.0, which allows authenticated users to exploit the parameter filtering mechanism in the apply_tweaks() function. This flaw can enable malicious users to override component parameters during runtime via API calls, potentially leading to unauthorized access or manipulation of components.
Affected Version(s)
Langflow OSS 1.0.0 <= 1.10.0