Langflow is a tool for building and deploying AI-powered agents and workflows. A privilege escalation vulnerability exists in Langflow containers where an authenticated user with RCE access can invoke the internal CLI command langflow superuser to create a new administrative user. This results in full superuser access, even if the user initially registered through the UI as a regular (non-admin) account. A patched version has not been made public at this time.
{
"cwe_ids": [
"CWE-269"
],
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/57xxx/CVE-2025-57760.json",
"cna_assigner": "GitHub_M"
}{
"cpe": [
"cpe:2.3:a:langflow:langflow:*:*:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev0:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev1:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev10:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev11:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev12:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev13:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev14:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev15:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev16:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev17:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev18:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev19:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev2:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev20:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev21:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev22:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev23:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev24:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev25:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev26:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev27:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev28:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev29:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev3:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev30:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev31:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev4:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev5:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev6:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev7:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev8:*:*:*:*:*:*",
"cpe:2.3:a:langflow:langflow:1.5.0:dev9:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "1.5.0"
},
{
"introduced": "1.5.0-dev0"
},
{
"last_affected": "1.5.0-dev0"
},
{
"introduced": "1.5.0-dev1"
},
{
"last_affected": "1.5.0-dev1"
},
{
"introduced": "1.5.0-dev10"
},
{
"last_affected": "1.5.0-dev10"
},
{
"introduced": "1.5.0-dev11"
},
{
"last_affected": "1.5.0-dev11"
},
{
"introduced": "1.5.0-dev12"
},
{
"last_affected": "1.5.0-dev12"
},
{
"introduced": "1.5.0-dev13"
},
{
"last_affected": "1.5.0-dev13"
},
{
"introduced": "1.5.0-dev14"
},
{
"last_affected": "1.5.0-dev14"
},
{
"introduced": "1.5.0-dev15"
},
{
"last_affected": "1.5.0-dev15"
},
{
"introduced": "1.5.0-dev16"
},
{
"last_affected": "1.5.0-dev16"
},
{
"introduced": "1.5.0-dev17"
},
{
"last_affected": "1.5.0-dev17"
},
{
"introduced": "1.5.0-dev18"
},
{
"last_affected": "1.5.0-dev18"
},
{
"introduced": "1.5.0-dev19"
},
{
"last_affected": "1.5.0-dev19"
},
{
"introduced": "1.5.0-dev2"
},
{
"last_affected": "1.5.0-dev2"
},
{
"introduced": "1.5.0-dev20"
},
{
"last_affected": "1.5.0-dev20"
},
{
"introduced": "1.5.0-dev21"
},
{
"last_affected": "1.5.0-dev21"
},
{
"introduced": "1.5.0-dev22"
},
{
"last_affected": "1.5.0-dev22"
},
{
"introduced": "1.5.0-dev23"
},
{
"last_affected": "1.5.0-dev23"
},
{
"introduced": "1.5.0-dev24"
},
{
"last_affected": "1.5.0-dev24"
},
{
"introduced": "1.5.0-dev25"
},
{
"last_affected": "1.5.0-dev25"
},
{
"introduced": "1.5.0-dev26"
},
{
"last_affected": "1.5.0-dev26"
},
{
"introduced": "1.5.0-dev27"
},
{
"last_affected": "1.5.0-dev27"
},
{
"introduced": "1.5.0-dev28"
},
{
"last_affected": "1.5.0-dev28"
},
{
"introduced": "1.5.0-dev29"
},
{
"last_affected": "1.5.0-dev29"
},
{
"introduced": "1.5.0-dev3"
},
{
"last_affected": "1.5.0-dev3"
},
{
"introduced": "1.5.0-dev30"
},
{
"last_affected": "1.5.0-dev30"
},
{
"introduced": "1.5.0-dev31"
},
{
"last_affected": "1.5.0-dev31"
},
{
"introduced": "1.5.0-dev4"
},
{
"last_affected": "1.5.0-dev4"
},
{
"introduced": "1.5.0-dev5"
},
{
"last_affected": "1.5.0-dev5"
},
{
"introduced": "1.5.0-dev6"
},
{
"last_affected": "1.5.0-dev6"
},
{
"introduced": "1.5.0-dev7"
},
{
"last_affected": "1.5.0-dev7"
},
{
"introduced": "1.5.0-dev8"
},
{
"last_affected": "1.5.0-dev8"
},
{
"introduced": "1.5.0-dev9"
},
{
"last_affected": "1.5.0-dev9"
}
],
"source": [
"CPE_RANGE",
"CPE_STRING",
"REFERENCES"
]
}