The Hacker News

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

CISA added two exploited bugs to KEV, forcing federal agencies to patch Langflow and Apex One flaws by June 4, 2026.
Dark Reading

Critical Flaw in Langflow AI Platform Under Attack

A critical vulnerability in Langflow, an open source framework for AI agent development, has been exploited in the wild shortly after its initial disclosure. The Cybersecurity and Infrastructure ...
Dark Reading

'Easily Exploitable' Langflow Vulnerability Requires Immediate Patching

A critical flaw found in the open source Langflow platform was added to the US Cybersecurity and Infrastructure Security Agency’s (CISA's) Known Exploited Vulnerabilities (KEV) catalog. Langflow is a ...
Bleeping Computer

Critical Langflow RCE flaw exploited to hack AI app servers

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has tagged a Langflow remote code execution vulnerability as actively exploited, urging organizations to apply security updates and ...
GIGAZINE

Langflow is a low-code platform that allows you to create AI agents and workflows for free, even without programming expertise.

When creating in-house applications or automation tools that utilize AI, one might use ' LangChain,' a powerful Python-based library that connects APIs, databases, and various AI services as ...
CSOonline

Critical flaw in AI agent dev tool Langflow under active exploitation

Researchers from security firm Trend Micro warn that a critical remote code execution vulnerability patched in April in the Langflow AI agent framework is being exploited to deploy botnet malware. The ...
Infosecurity-magazine.com

Hackers Exploit Critical Langflow Bug in Just 20 Hours

Threat actors have demonstrated just how quickly they operate today after exploiting a critical open source vulnerability within 20 hours, working only from the advisory description. The bug, CVE-2026 ...