CVE detail
CVE-2025-34291: Langflow Origin Validation Error Vulnerability
Source: CISA Known Exploited Vulnerabilities catalog · back to feed
Vendor / product
Langflow · Langflow
- Date added (KEV)
- May 21, 2026
- CISA due date
- Jun 04, 2026
- Ransomware campaign use
- Unknown
Required action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Vendor fix: Vendor mitigation
Scorifya interpretation
AI-generatedA short, structured read of the record above, generated when this page first loads, then cached for a week.
Plain English
Technical detail
From CISA
Langflow contains an origin validation error vulnerability in which an overly permissive CORS configuration combined with a refresh token cookie configured as SameSite=None allows a malicious webpage to perform cross-origin requests that include credentials and successfully call the refresh endpoint. This could allow the attacker to execute arbitrary code and achieve full system compromise via obtained tokens that permit access to authenticated endpoints.
This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://github.com/langflow-ai/langflow ; https://github.com/langflow-ai/langflow/releases/tag/v1.9.3; https://github.com/langflow-ai/langflow/issues/11465#event-25774545848 ; https://nvd.nist.gov/vuln/detail/CVE-2025-34291
See what attackers can see on your domain
This vulnerability is on CISA's Known Exploited Vulnerabilities list, so it is being exploited in the wild right now. Scorifya can't test for Langflow directly, but in about 30 seconds it shows what your own domain exposes publicly across TLS, security headers, DNS, and cookies: the surface attackers probe first.
SOC 2 compliance
Tracking remediation across your cloud infrastructure?
Scorifya Controls automates 54 SOC 2 checks across AWS, GitHub, GCP, and Azure, and gives you a manual evidence trail for the controls no tool can automate. Self-hosted, three tiers from $99/mo.
See Scorifya Controls →References
- https://www.obsidiansecurity.com/blog/cve-2025-34291-critical-account-takeover-and-rce-vulnerability-in-the-langflow-ai-agent-workflow-platformExploitMitigationThird Party Advisory
- https://github.com/langflow-ai/langflowProduct
- https://www.vulncheck.com/advisories/langflow-cors-misconfiguration-to-token-hijack-and-rceThird Party Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-34291US Government Resource
- https://www.crowdsec.net/vulntracking-report/cve-2025-34291
Other recent CVEs from Langflow
- CVE-2026-55255Langflow, Langflow Authorization Bypass Through User-Controlled Key Vulnerability
- CVE-2026-33017Langflow, Langflow Code Injection Vulnerability
- CVE-2025-3248Langflow, Langflow Missing Authentication Vulnerability