CRITICALVulnerability
Verified
Global

NVD CRITICAL: CVE-2026-7874 — IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all sto...

·Source: NIST NVD

Updated:

Executive Summary

IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use of a weak and reversible key derivation mechanism for encryption at rest.

Analysis

IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use of a weak and reversible key derivation mechanism for encryption at rest. CVSS Score: 9.1. Published: 2026-06-30T20:17:31.900.

Indicators of Compromise (1)

CVE (1)
CVE-2026-7874
Source Attribution

Originally published by NIST NVD on Jun 30, 2026. Verified by: NIST.

Related Threats