[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"public-cve-CVE-2026-3341":3,"news-by-cve-CVE-2026-3341-10":62},{"kev_ransomware_use":4,"has_ai_summary":4,"cvss_severity":5,"cvss_source":6,"in_kev":4,"weaknesses":7,"vendor_context":11,"attack_techniques":20,"assigner_short_name":35,"cvss_version":36,"has_solution":37,"reference_count":38,"sectors":39,"state":40,"date_published":41,"source_identifier":42,"affected_products_preview":43,"references_preview":48,"has_nuclei_templates":4,"date_updated":41,"attack_technique_count":51,"affected_product_count":38,"nuclei_template_count":52,"description":53,"remediation_summary":54,"has_attack_graph":37,"nvd_cvss_severity":35,"has_workaround":4,"cvss_score":55,"cvss_vector":56,"exploit_count":52,"attack_tactics":57,"title":58,"assigner_org":35,"nvd_cvss_vector":35,"has_exploit":4,"tags":59,"sources":60,"id":61},false,"MEDIUM","cvelist",[8],{"cwe_id":9,"name":10},"CWE-918","CWE-918 Server-Side Request Forgery (SSRF)",[12],{"aliases":13,"sector":15,"subsector":16,"vendor":17,"vendor_type":18,"country":19},[14],"international business machines","enterprise-software","itsm-monitoring","ibm","commercial","US",[21,28],{"technique_name":22,"tactic":23,"tactic_name":24,"url":25,"confidence":26,"technique_id":27},"Proxy","command-and-control","Command and Control","https://attack.mitre.org/techniques/T1090/","high","T1090",{"tactic":29,"tactic_name":30,"url":31,"confidence":32,"technique_id":33,"technique_name":34},"initial-access","Initial Access","https://attack.mitre.org/techniques/T1190/","medium","T1190","Exploit Public-Facing Application","","3.1",true,1,[15],"PUBLISHED","2026-06-11T14:47:57Z","9a959283-ebb5-44b6-b705-dcc2bbced522",[44],{"product":45,"sector":15,"subsector":16,"deployment":46,"vendor":47},"Langflow Desktop","on-prem","IBM",[49],{"url":50,"source":6},"https://www.ibm.com/support/pages/node/7275444",2,0,"IBM Langflow Desktop 1.0.0 through 1.9.2 IBM Langflow is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.",{"has_workaround":4,"has_patch":37},5.4,"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",[24,30],"IBM Langflow Desktop 1.0.0 - 1.9.2 DNS Rebinding Bypasses SSRF Protection Allowing Access to Internal Services",[],[6],"CVE-2026-3341",{"cve_id":61,"items":63,"total":52},[]]