High severity8.8NVD Advisory· Published Apr 8, 2026· Updated Apr 14, 2026
CVE-2026-3357
CVE-2026-3357
Description
IBM Langflow Desktop 1.6.0 through 1.8.2 Langflow could allow an authenticated user to execute arbitrary code on the system, caused by an insecure default setting which permits the deserialization of untrusted data in the FAISS component.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: >=1.6.0 <=1.8.2
Patches
Vulnerability mechanics
References
1- www.ibm.com/support/pages/node/7268428nvdVendor Advisory
News mentions
0No linked articles in our index yet.