{"uuid": "4fe06d56-5320-4f9b-bf7a-f05c16e445ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33017", "type": "exploited", "source": "https://t.me/thehackernews/9372", "content": "\ud83d\udea8 CVE-2026-33017 is being exploited against Langflow.\n\nAttackers abuse an unauthenticated API endpoint to run Python code, drop Lambsys, and launch a Monero miner.\n\nLambsys can spread via reused SSH keys.\n\nLangflow attack chain: https://thehackernews.com/2026/06/langflow-rce-exploited-to-deploy-monero.html", "creation_timestamp": "2026-07-15T12:00:03.194003Z"}