Langflow: IDOR Vulnerability in `/api/v1/responses` Endpoint Allows Authenticated Attackers to...

9.9 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L

Description

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, an Insecure Direct Object Reference (IDOR) vulnerability in /api/v1/responses endpoint allows an authenticated attacker to execute any flow belonging to another user by specifying the victim's flow ID in the request. This vulnerability is fixed in 1.9.2.

AI Analysis

Insecure Direct Object Reference (IDOR) vulnerability in /api/v1/responses endpoint

Basic Information

ID CVE-2026-55255

Source GitHub_M

Published Jun 23, 2026 at 16:28

Modified Jun 23, 2026 at 17:32

Affected Product

Vendor langflow-ai

Product langflow

Version < 1.9.2

Affected Versions langflow-ai langflow < 1.9.2

CWE Classification

CWE-639

AI Assessment

AI Score 9.9 / 10

AI Severity Critical

Vendor Langflow-ai

Product Langflow

Version < 1.9.2

References

{
    "lastseen": "",
    "description": "Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, an Insecure Direct Object Reference (IDOR) vulnerability in /api/v1/responses endpoint allows an authenticated attacker to execute any flow belonging to another user by specifying the victim's flow ID in the request. This vulnerability is fixed in 1.9.2.",
    "published": "2026-06-23T16:28:20.985Z",
    "modified": "2026-06-23T17:32:52.375Z",
    "type": "cve",
    "title": "Langflow: IDOR Vulnerability in `/api/v1/responses` Endpoint Allows Authenticated Attackers to Access Another User's Flow",
    "source": "GitHub_M",
    "references": "https://github.com/langflow-ai/langflow/security/advisories/GHSA-qrpv-q767-xqq2\nhttps://github.com/langflow-ai/langflow/pull/12832",
    "id": "CVE-2026-55255",
    "bulletinFamily": "",
    "cwe": [
        "CWE-639"
    ],
    "cvelist": null,
    "sourceData": "langflow-ai langflow < 1.9.2",
    "sourceHref": "",
    "cvss": {
        "score": 9.9,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "langflow",
    "version": "< 1.9.2",
    "vendor": "langflow-ai",
    "ai_description": "Insecure Direct Object Reference (IDOR) vulnerability in /api/v1/responses endpoint",
    "ai_severity": "Critical",
    "ai_vendor": "Langflow-ai",
    "ai_product": "Langflow",
    "ai_version": "< 1.9.2",
    "ai_score": 9.9
}

Langflow: IDOR Vulnerability in `/api/v1/responses` Endpoint Allows Authenticated Attackers to Access Another User’s Flow_CVE-2026-55255