KEV Entry
CVE-2026-55255
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2026-07-07 17:00 UTC
Timestamps
2026-07-07
2026-07-07
Scope
KEVIntel entry: Langflow: IDOR Vulnerability in `/api/v1/responses` Endpoint Allows Authenticated Attackers to Access Another User's Flow | Affected: langflow-ai / langflow | CVSS: 9.9 (CRITICAL) | EPSS: 0.00233 | Used in malware: unknown | Not yet in CISA KEV: False
References
- {'id': 'CVE-2026-55255', 'url': 'https://www.cve.org/CVERecord?id=CVE-2026-55255'}
- {'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2026-55255'}
dd1e4271-1fb8-4dfa-af0f-1b755d41763d
caeb2787-0d58-4236-9039-7c86c3e566f3
2026-07-07 18:00 UTC
2026-07-07 18:00 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| public_report | kevintel | successful_exploitation | 0.70 |
View details
|
- |