CVE-2026-3357

HIGH

IBM Langflow Desktop FAISS Vector Store Remote Code Execution via malicious Pickle file

Title source: cna

Description

IBM Langflow Desktop 1.6.0 through 1.8.2 Langflow could allow an authenticated user to execute arbitrary code on the system, caused by an insecure default setting which permits the deserialization of untrusted data in the FAISS component.

References (1)

[Vendor Advisory] https://www.ibm.com/support/pages/node/7268428

Scores

CVSS v3 8.8

EPSS 0.0026

EPSS Percentile 49.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-502

Status published

Products (2)

IBM/Langflow Desktop 1.6.0 - 1.8.2

langflow/langflow 1.6.0 - 1.8.3

Published Apr 08, 2026

Tracked Since Apr 08, 2026