CVE-2026-7664 | IBM Langflow OSS 1.0.0 through 1.8.4 could allow unauthentic… | CVSS 9.8 CRITICAL

Description

IBM Langflow OSS 1.0.0 through 1.8.4 could allow unauthenticated attackers to access protected MCP project resources and execute MCP operations due to improper authorization enforcement in the Streamable MCP transport endpoint.

Metadata

CVE ID: CVE-2026-7664
State: PUBLISHED
Assigner: ibm
Reserved: 2026-05-01 19:46 UTC
Published: 2026-06-22 14:10 UTC
Last updated: 2026-06-22 14:10 UTC
Primary CWE: CWE-287
CWE-287 Improper Authentication
Vendor / Product: IBM / Langflow OSS
Sources: cve.org · NVD

Severity & Metrics

9.8 CRITICAL CVSS 3.1

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products (1)

Vendor	Product	Platform	Versions
IBM	Langflow OSS	—	1.0.0 ≤ 1.8.4

Weakness (CWE)

CWE	Source	Description
CWE-287	cna	CWE-287 Improper Authentication

CVSS scores (1)

Score	Severity	Version	Source	Vector
9.8	CRITICAL	3.1	cna	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References (1)

https://www.ibm.com/support/pages/node/7277243