IBM Langflow OSS 1.0.0 through 1.10.0 allows users with Redis access to execute arbitrary code with full application privileges, compromising all secrets, data, and system integrity.
{ "cpe": "cpe:2.3:a:langflow:langflow:*:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "1.0.0" }, { "last_affected": "1.10.0" } ], "source": "CPE_RANGE" }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-7871.json"