CVE-2026-7874: Weak Cryptographic Key Derivation Exposed All Stored Credentials
IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use of a weak and reversible key derivation mechanism for encryption at rest.
Metrics
- CVSS v3.1
- 9.1
- Severity
- CRITICAL
- Fixed in
- —
- Affected Products
- 1
HarborGuard Analysis
Synopsis
This is a weak cryptographic key derivation vulnerability in IBM Langflow OSS versions 1.0.0 through 1.10.0. The flaw is reachable over the network with no authentication required, meaning any attacker who can reach the service can exploit it without needing an account or user interaction. Successful exploitation exposes all stored credentials and allows tampering with stored data. No fix version has been published yet; HarborGuard tracks the upstream advisory and will make a patched-image rebuild available as soon as IBM releases one.
HarborGuard Coverage
Detection is available across every HarborGuard environment: CVE-2026-7874 is ingested from upstream advisory feeds within minutes of publication and matched against all customer images, including custom-built images that bundle IBM Langflow OSS. Any image running an affected version (1.0.0 through 1.10.0) is flagged automatically.
AvailableHarborGuard scores this CVE at CVSS 9.1 (Critical) and weights it against each customer environment's compliance policy to determine priority and routing. Findings are delivered to the appropriate team inbox within each customer organization based on configured escalation rules.
AvailableBecause no upstream fix version exists for CVE-2026-7874, HarborGuard re-checks the IBM advisory on every ingest cycle and will make a patched-image rebuild available the moment IBM publishes a remediated release. In the meantime, compensating controls such as network-policy isolation and egress filtering can be applied to limit exposure for affected workloads.
Pending upstreamExploit Conditions
- Network reachabilityRequired
The attacker must be able to reach the Langflow service over the network; no local or physical access is required.
- AuthenticationNot required
No account or session credential is needed to exploit this vulnerability.
- Victim interactionNot required
Exploitation is fully attacker-driven and does not require any action from a user or operator.
- Attack complexityDetail
The exploit is reliable and condition-free; no race conditions, special memory layout, or environmental factors are required.
Blast Radius
- Reads all credentials stored at rest in the Langflow instance, including API keys, secrets, and integration tokens, because encryption is weak and reversible.
- Modifies stored credential or configuration data, enabling an attacker to substitute their own values or corrupt existing entries.
- Exposes downstream systems that rely on the stored credentials, extending the breach surface beyond the Langflow deployment itself.
How HarborGuard Handles This
Available on HarborGuard: any image running IBM Langflow OSS 1.0.0 through 1.10.0 is flagged at Critical severity within minutes of the CVE entering upstream feeds. Because IBM has not yet published a fix, HarborGuard monitors the advisory on every ingest cycle and will automatically make a patched-image rebuild available the moment a remediated version is released; customers with auto-remediation enabled will receive the rebuild, a regression-test run, and a PR opened against affected workloads without manual intervention. While no patch is available, recommended compensating controls include applying Kubernetes network policies to restrict inbound access to Langflow pods, adding egress filtering to limit which systems can query the credential store, and rotating any secrets already held by affected instances on the assumption that encryption-at-rest protections may be compromised.
- IBM / Langflow OSS≤ 1.10.0
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N