{"uuid": "af02f7bc-78f0-475d-8186-177181507de3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3248", "type": "published-proof-of-concept", "source": "https://t.me/information_security_channel/53739", "content": "CVE-2025-3248 \u2013 Unauthenticated Remote Code Execution in Langflow via Insecure Python exec Usage\nhttps://www.offsec.com/blog/cve-2025-3248/\n\nCVE-2025-3248 is a critical RCE vulnerability in Langflow that allows unauthenticated attackers to execute arbitrary Python code via unsanitized input to exec(). Learn how it works and how to protect your system.\nThe post CVE-2025-3248 \u2013 Unauthenticated Remote Code Execution in Langflow via Insecure Python exec Usage (https://www.offsec.com/blog/cve-2025-3248/) appeared first on OffSec (https://www.offsec.com/).", "creation_timestamp": "2025-06-18T17:25:55.000000Z"}