@acirema.dev on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

Tracked Changes

acirema.dev

did:plc:tdrgvqdlw4ip2v2doteuddmh

CISA warns of actively exploiting a critical RCE in Langflow (CVE-2025-3248). Unauthenticated attackers can run code via exposed API. Patch now (v1.4.0) or isolate your instance. AI dev tools must be secure by design. Looking at you @uarizona.bsky.social #cybersecurity #AI #UofA #Langflow https://horizon3.ai/attack-research/disclosures/unsafe-at-any-speed-abusing-python-exec-for-unauth-rce-in-langflow-ai/

2025-05-06T16:19:46.687Z