Vulnerabilities

Report: Latest: CVE-2026-7700 - langflow-ai langflow LambdaFilterComponent lambda_filter.p eval code injection

2026-05-03 0 views admin

CVE ID :CVE-2026-7700 Published : May 3, 2026, 3:15 p.m. | 41 minutes ago Description :A weakness has been identified in langflow-ai langflow up to 1.8.4. This affects the function eval of the file src/lfx/src/lfx/components/llm_operations/lambda_filter.p of the component LambdaFilterComponent. Executing a manipulation can lead to code injection. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way. Severity: 6.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-7700

Severity

MEDIUM

Published

May 3, 2026

🏷️ Tags

reportlatestlangflowlambdafiltercomponentlambda_filterinjectionpublishedminutescvecve-2026-7700

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: Latest: CVE-2026-7700 - langflow-ai langflow LambdaFilterComponent lambda_filter.p eval code injection

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-7702 - toeverything AFFiNE Public Markdown Preview Endpoint :docId allowDocPreview autho

Report: Update: CVE-2026-7704 - AV Stumpfl Pixera Two Media Server Service Port 1338 path traversal

Report: Essential Guide: CVE-2026-7703 - AV Stumpfl Pixera Two Media Server Websocket API code injection

Report: CVE-2026-7698 - Tiandy Easy7 Integrated Management Platform updateDbBackupInfo os command injection - Guide

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting