CVE-2026-21445 | Langflow up to 1.7.0.dev44 API Endpoint missing authentication

January 2, 2026 Yanac

A vulnerability, which was classified as critical, has been found in Langflow up to 1.7.0.dev44. This issue affects some unknown processing of the component API Endpoint. The manipulation leads to missing authentication.

This vulnerability is documented as CVE-2026-21445. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More