{"vulnerability": "cve-2026-13446", "sightings": [{"uuid": "5a9046fc-7e59-4409-9c9f-de5a39a2b419", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13446", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mquojgqxle2i", "content": "CVE-2026-13446 - langflow oss\nIBM Langflow's open-source version contains a serious security risk: its use of hard-coded passwords and keys. This means that anyone with access to the software can see these\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#langflowoss #ibm #CVE #infosec", "creation_timestamp": "2026-07-17T21:20:05.646871Z"}, {"uuid": "ddebed2e-b9d5-44ae-9694-cd317808885f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-13446", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116940160122894516", "content": "CVE-2026-13446: IBM Langflow OSS 1.0.0 \u2013 1.10.1 contains hard-coded credentials (CRITICAL, CVSS 9.8). Total system compromise possible. No patch yet \u2014 restrict access, monitor activity. More: https://radar.offseq.com/threat/cve-2026-13446-cwe-798-use-of-hard-coded-credentia-e33f708cc1420dc3 #OffSeq #Vuln #Cybersecurity #IBM", "creation_timestamp": "2026-07-18T09:00:38.100254Z"}, {"uuid": "bdd14794-b204-4f28-aa16-bf6d4f762ab5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-13446", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqvvo465ey2n", "content": "CVE-2026-13446: IBM Langflow OSS v1.0.0 \u2013 1.10.1 faces a CRITICAL risk due to hard-coded credentials. Restrict access &amp; monitor systems until a patch is released. https://radar.offseq.com/threat/cve-2026-13446-cwe-798-use-of-hard-coded-credentia-e33f708cc1420dc3 #OffSeq #Vulnerability #IBM", "creation_timestamp": "2026-07-18T09:00:38.829094Z"}, {"uuid": "dc4f070c-0a5a-44af-b5e9-a902a07832ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13446", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqw4exsrjd2c", "content": "\ud83d\udd34 CVE-2026-13446 - Critical (9.8)\n\nIBM Langflow OSS 1.0.0 through 1.10.1 contains\u00a0hard-coded credentials, such as a password or cry...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-13446/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-18T11:00:48.391452Z"}]}