{"uuid": "5a4498e4-3aff-4189-bc42-2cae97792748", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33017", "type": "exploited", "source": "https://t.me/thehackernews/9372", "content": "\ud83d\udea8 CVE-2026-33017 is being exploited against Langflow.\n\nAttackers abuse an unauthenticated API endpoint to run Python code, drop Lambsys, and launch a Monero miner.\n\nLambsys can spread via reused SSH keys.\n\nLangflow attack chain: https://thehackernews.com/2026/06/langflow-rce-exploited-to-deploy-monero.html", "creation_timestamp": "2026-07-16T00:00:19.044927Z"}