Cyber Posture

CVE-2026-3357

High

Published: 08 April 2026

Published
08 April 2026
Modified
14 April 2026
KEV Added
Patch
CVSS Score 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0035 57.7th percentile
Risk Priority 18 60% EPSS · 20% KEV · 20% CVSS

Description

IBM Langflow Desktop 1.6.0 through 1.8.2 Langflow could allow an authenticated user to execute arbitrary code on the system, caused by an insecure default setting which permits the deserialization of untrusted data in the FAISS component.

Mitigating Controls (NIST 800-53 r5)AI

SI-2 Flaw Remediation good match
prevent

Timely flaw remediation through vendor patches directly addresses and corrects the insecure deserialization vulnerability in the FAISS component.

CM-6 Configuration Settings good match
prevent

Establishing and enforcing secure configuration settings mitigates the insecure default that permits deserialization of untrusted data.

SI-10 Information Input Validation partial match
prevent

Information input validation helps prevent the processing of malicious serialized data that exploits the deserialization flaw.

Security SummaryAI

CVE-2026-3357 affects IBM Langflow Desktop versions 1.6.0 through 1.8.2, where an insecure default setting in the FAISS component permits the deserialization of untrusted data. This vulnerability enables an authenticated user to execute arbitrary code on the system and is classified under CWE-502 (Deserialization of Untrusted Data). It carries a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H), indicating high severity due to its network accessibility, low attack complexity, and significant impacts across confidentiality, integrity, and availability.

An authenticated user with low privileges can exploit this issue remotely by providing malicious input that triggers unsafe deserialization in the FAISS component. No user interaction is required, allowing the attacker to achieve arbitrary code execution on the targeted system, potentially leading to full compromise.

IBM provides details on mitigations and patches in their security advisory at https://www.ibm.com/support/pages/node/7268428.

Details

CWE(s)
CWE-502

Affected Products

langflow
langflow
1.6.0 — 1.8.3

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
attack.mitre.org →
T1210 Exploitation of Remote Services Lateral Movement
Adversaries may exploit remote services to gain unauthorized access to internal systems once inside of a network.
attack.mitre.org →
Why these techniques?

The vulnerability allows remote arbitrary code execution via unsafe deserialization by a low-privileged authenticated user, directly enabling Exploitation for Privilege Escalation (T1068) and Exploitation of Remote Services (T1210).

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

References