{"uuid": "8edd9b97-2358-493e-9275-c65360338377", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55255", "type": "seen", "source": "https://bsky.app/profile/diesec.bsky.social/post/3mqjjz2mimj2c", "content": "CISA just KEV-listed an AI agent platform for the first time. CVE-2026-55255: attackers steal other tenants' API keys and cloud creds from Langflow via one crafted request. CVSS 6.1 on paper, 9.9 in practice. Patch to 1.9.2 now.\n\nzurl.co/pJ7er \nzurl.co/ihjcE \n\n #AISecurity #CISA #CVE", "creation_timestamp": "2026-07-13T11:00:04.570138Z"}