CVE-2026-10134 | IBM Langflow OSS up to 1.9.3 Conversation /api/v1/build code injection
A vulnerability, which was classified as critical, has been found in IBM Langflow OSS up to 1.9.3. This affects an unknown function of the file /api/v1/build of the component Conversation Handler. The manipulation leads to code injection.
This vulnerability is documented as CVE-2026-10134. The attack can be initiated remotely. There is not any exploit available.
It is advisable to upgrade the affected component.VulDB Recent EntriesRead More