Vulnerability intelligence

CVE-2025-34291

Langflow Origin Validation Error Vulnerability

Langflow versions up to and including 1.6.9 contain a chained vulnerability that enables account takeover and remote code execution. An overly permissive CORS configuration (allow_origins='*' with allow_credentials=True) combined with a refresh token cookie configured as SameSite=None allows a malicious webpage to perform cross-origin requests that include credentials and successfully call the refresh endpoint. An attacker-controlled origin can therefore obtain fresh access_token / refresh_token pairs for a victim session. Obtained tokens permit access to authenticated endpoints — including built-in code-execution functionality — allowing the attacker to execute arbitrary code and achieve full system compromise.

CVSS Score

9.4

Critical

EPSS — Exploit Probability

33%

Riskier than 97% of all CVEs

Exploitation

Confirmed in the wild

Used in ransomware campaigns

Remediation

unknown

Federal deadline 2026-06-04

CISA required action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. Deadline for federal agencies: 2026-06-04.

NVD entry PoC / advisory CISA KEV

3 articles across 3 outlets · first covered May 21, 2026 · latest May 22, 2026

Coverage timeline

CISA Flags CVE-2025-34291 Langflow Flaw in KEV Update
securityaffairs.com · May 22, 2026
CISA warns of critical Langflow CVE-2025-34291 flaw under attack
www.cisa.gov · May 21, 2026
CISA warns of critical Langflow CVE-2025-34291 flaw under attack
cisa.gov · May 21, 2026

Related CVEs — Langflow

CVE-2026-33017KEV