High severityOSV Advisory· Published Dec 19, 2025· Updated Dec 19, 2025
Langflow Vulnerable to External Control of File Name or Path
CVE-2025-68478
Description
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.0, if an arbitrary path is specified in the request body's fs_path, the server serializes the Flow object into JSON and creates/overwrites a file at that path. There is no path restriction, normalization, or allowed directory enforcement, so absolute paths (e.g., /etc/poc.txt) are interpreted as is. Version 1.7.0 fixes the issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
langflowPyPI | < 1.7.1 | 1.7.1 |
Affected products
2- Range: 1.1.2, 1.1.3, 1.1.4, …
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.