CRITICALVulnerability
Verified
Global
NVD CRITICAL: CVE-2026-7874 — IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all sto...
·Source: NIST NVD
Updated:
Executive Summary
IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use of a weak and reversible key derivation mechanism for encryption at rest.
Analysis
IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use of a weak and reversible key derivation mechanism for encryption at rest. CVSS Score: 9.1. Published: 2026-06-30T20:17:31.900.