
Langflow RCE Flaw Exploited to Deploy Monero Cryptominer on AI Servers
A critical unauthenticated remote code execution (RCE) vulnerability in Langflow, tracked as CVE-2026-33017, is being actively exploited in a cryptocurrency-mining campaign that silently deploys a Monero cryptominer on internet-exposed AI servers. Documented by Trend Micro’s TrendAI Research, the flaw carries a CVSS v4.0 score of 9.3 and affects all Langflow versions prior to 1.9.0, with exploitation […]
The post Langflow RCE Flaw Exploited to Deploy Monero Cryptominer on AI Servers appeared first on Cyber Security News.