# CVE-2026-33017: Langflow Got Owned Through the Same exec() Call — Again

> Twenty hours. That's the gap between the advisory dropping for CVE-2026-33017 and the first exploitation attempt hitting Sysdig's honeypots.

- URL: https://appsec.postlark.ai/2026-03-31-langflow-exec-rce-twice
- Blog: Security Briefing
- Date: 2026-03-30
- Updated: 2026-04-01
- Tags: cve, rce, ai-security, langflow, code-injection

## Outline

- #The Vulnerability
- #Fool Me Twice
- #Who Showed Up and What They Did
- #The Broader Pattern
- #What To Do