IBM Langflow Desktop Directory Traversal Vulnerability Allowing Arbitrary File Write

A directory traversal vulnerability has been identified in IBM Langflow Desktop versions 1.2.0 through 1.8.4. This vulnerability allows authenticated attackers to send specially crafted URL requests that include 'dot dot' sequences to traverse directories and write arbitrary files on the system. The issue arises because the application improperly sanitizes multipart upload filenames, enabling path traversal and arbitrary file writing outside of intended directories.

Impact

Exploitation of this vulnerability could lead to unauthorized file writing on the system, with the potential for remote code execution, as the written files could be executed with the privileges of the backend service.

Remediation

Users are advised to upgrade to IBM Langflow Desktop version 1.9.0 or newer. Instructions for downloading Langflow Desktop are available on the Langflow website.