{"uuid": "b62eb160-1e8c-4c38-b3a2-0284c5bd03b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-34291", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mmiontm2ao2p", "content": "Every Langflow install on version 1.6.9 or older is being targeted by Iran's MuddyWater APT. CISA added CVE-2025-34291 to its KEV catalog May 21. The flaw chains permissive CORS with a CSRF gap on a code-execution endpoint, enabling account takeover and RCE. Federal patch deadline: June 4.", "creation_timestamp": "2026-05-23T05:09:50.953927Z"}