CISA Adds Langflow CVE To KEV
CISA issued an urgent warning March 25, 2026, adding CVE-2026-33017 to its Known Exploited Vulnerabilities catalog for Langflow after evidence of active exploitation. The vulnerability allows unauthenticated attackers to execute arbitrary code and create public flows by bypassing authentication, rooted in CWEs 94, 95 and 306. CISA mandates federal mitigations by April 8, 2026, and urges all organizations to apply vendor mitigations or discontinue use.
Key Points
- 1Reports active exploitation of CVE-2026-33017 enabling unauthenticated arbitrary code execution in Langflow instances
- 2Shows severe risk due to missing authentication and unsafe code evaluation (CWE-94, CWE-95, CWE-306)
- 3Requires immediate mitigations by April 8, 2026; federal agencies must comply under BOD 22-01
Scoring Rationale
Official CISA KEV listing and confirmed exploitation increase impact; significance narrowed by being specific to Langflow deployments.
Sources
Public references used for this report.
Practice interview problems based on real data
1,625 SQL & Python problems across 15 industry datasets — the exact type of data you work with.
Try 250 free problems
