Security Boulevard

CVE-2025-3248: RCE vulnerability in Langflow

IntroductionCVE-2025-3248, a critical remote code execution (RCE) vulnerability with a CVSS score of 9.8, has been discovered in Langflow, an open-source platform for visually composing AI-driven ...
CSOonline

Critical flaw in AI agent dev tool Langflow under active exploitation

Researchers from security firm Trend Micro warn that a critical remote code execution vulnerability patched in April in the Langflow AI agent framework is being exploited to deploy botnet malware. The ...
Dark Reading

Hackers Exploit Critical Langflow Flaw to Unleash Flodrix Botnet

Attackers are actively targeting a critical flaw in a popular Python-based Web app for building AI agents and workflows to unleash a powerful botnet that can cause full system compromise, distributed ...
The Hacker News

New Flodrix Botnet Variant Exploits Langflow AI Server RCE Bug to Launch DDoS Attacks

Cybersecurity researchers have called attention to a new campaign that's actively exploiting a recently disclosed critical security flaw in Langflow to deliver the Flodrix botnet malware. "Attackers ...
The Hacker News

Langflow | Breaking Cybersecurity News | The Hacker News

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Langflow and Trend Micro Apex One to its Known Exploited Vulnerabilities ( KEV ) catalog ...
heise online

Patch now! Warning about malware attacks on FreeType and Langflow

Attackers are currently exploiting software vulnerabilities in FreeType and Langflow and compromising systems by executing malicious code. In both cases, security patches are available, which admins ...
GIGAZINE

Langflow is a low-code platform that allows you to create AI agents and workflows for free, even without programming expertise.

When creating in-house applications or automation tools that utilize AI, one might use ' LangChain,' a powerful Python-based library that connects APIs, databases, and various AI services as ...