Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints
Summary
Threat actors are actively exploiting a critical Langflow vulnerability, identified as CVE-2026-33017, to deploy Monero cryptocurrency miners. This unauthenticated remote code execution (RCE) flaw (CVSS score: 9.3) targets exposed artificial intelligence (AI) application endpoints. Attackers are currently scanning and weaponizing this vulnerability to compromise systems.
IFF Assessment
The active exploitation of a critical RCE vulnerability in an AI tool to install a cryptocurrency miner constitutes a significant threat and bad news for defenders.
Severity
The CVSS score of 9.3 is explicitly stated in the article for CVE-2026-33017. This score indicates a critical severity due to the vulnerability being an unauthenticated remote code execution (RCE) flaw, allowing attackers to fully compromise affected systems with high impact and low complexity.
CISA KEV: Listed as actively exploited. Federal patch due: April 08, 2026. Known ransomware use: Unknown.
Defender Context
Defenders must immediately identify and patch any Langflow instances in their environment, especially those exposed externally, to mitigate the risk of unauthenticated remote code execution. It's crucial to also scan for signs of compromise, such as unexpected Monero miner processes or unusual network activity, and to implement robust network segmentation and access controls for AI application endpoints.