CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

The Hacker News·22. Mai 2026, 05:47

Originalartikel lesen bei The Hacker News

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Langflow and Trend Micro Apex One to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities in question are listed below -...

MITRE ATT&CK Kill Chain (1 Techniken)

Resource Development

T1588.006

Vulnerabilities

Vollständigen Artikel lesen bei The Hacker News

2 Quellen berichten

Weitere Quellen

Schwachstellen in Trend Micro Apex One und Langflow unter Beschuss
heise Security · vor 5 Tagen

Erwähnte CVEs (1)

CVE-2025-34291HIGH(8.8)

KEVEPSS 30%

Langflow versions up to and including 1.6.9 contain a chained vulnerability that enables account takeover and remote code execution. An overly permissive CORS configuration (allow_origins='*' with allow_credentials=True) combined with a refresh token cookie configured as SameSite=None allows a malicious webpage to perform cross-origin requests that include credentials and successfully call the refresh endpoint. An attacker-controlled origin can therefore obtain fresh access_token / refresh_token pairs for a victim session. Obtained tokens permit access to authenticated endpoints — including built-in code-execution functionality — allowing the attacker to execute arbitrary code and achieve full system compromise.

Details NVD

MITRE ATT&CK Kill Chain (1 Techniken)

Verwandte Artikel