CVE-2025-3248

CVE Database · CVE-2025-3248

CVE-2025-3248

· CRITICALAnalyzed

CVSS v3.1

9.8

EPSS

99.96%

Published

Apr 7, 2025

Modified

Nov 6, 2025

CISA Known Exploited Vulnerability

Added: 2025-05-05 · Due: 2025-05-26

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Public PoC / Exploit (12)

All weaponized →

Exploit-DBLangflow 1.3.0 - Remote Code Execution (RCE)Exploit-DBLangflow 1.2.x - Remote Code Execution (RCE)NucleiNuclei detection template TrickestTrickest PoC index GitHub PoCynsmroztas/CVE-2025-3248-Langflow-RCE★18 GitHub PoCverylazytech/CVE-2025-3248★10 GitHub PoCxuemian168/CVE-2025-3248★9 GitHub PoC0-d3y/langflow-rce-exploit★7 GitHub PoCdennisec/Mass-CVE-2025-3248★3 GitHub PoCdrackyjr/cve-2025-3248-exploit★3 GitHub PoCPuddinCat/CVE-2025-3248-POC★2 GitHub PoCvigilante-1337/CVE-2025-3248★2

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/validate/code endpoint. A remote and unauthenticated attacker can send crafted HTTP requests to execute arbitrary code.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-306CWE-94CWE-306

Affected Products (1)

langflow · langflow (up to 1.3.0)vulnerable

References (5)

https://github.com/langflow-ai/langflow/pull/6911

Patch

https://github.com/langflow-ai/langflow/releases/tag/1.3.0

Release Notes

https://www.horizon3.ai/attack-research/disclosures/unsafe-at-any-speed-abusing-python-exec-for-unauth-rce-in-langflow-ai/

ExploitThird Party Advisory

https://www.vulncheck.com/advisories/langflow-unauthenticated-rce

Third Party Advisory

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-3248

US Government Resource

KEV Catalog EPSS Scores Vendors All CVEs