Langfuse Langfuse
5 CVEs affecting Langfuse Langfuse. Latest disclosed: 2026-05-08. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-65107 | Medium | 6.5 | 2025-11-21 | Langfuse is an open source large language model engineering platform. In versions from 2.95.0 to before 2.95.12 and from 3.17.0 to before 3.131.0, in SSO provi… |
CVE-2026-41487 | Medium | 5.4 | 2026-05-08 | Langfuse is an open source large language model engineering platform. From version 3.68.0 to before version 3.167.0, there is a role-based-access control flaw… |
CVE-2025-64504 | Medium | 5.0 | 2025-11-10 | Langfuse is an open source large language model engineering platform. Starting in version 2.70.0 and prior to versions 2.95.11 and 3.124.1, in certain project… |
CVE-2025-9799 | Medium | 5.0 | 2025-09-01 | A security flaw has been discovered in Langfuse up to 3.88.0. Affected by this vulnerability is the function promptChangeEventSourcing of the file web/src/feat… |
CVE-2026-24055 | | 2026-01-22 | Langfuse is an open source large language model engineering platform. In versions 3.146.0 and below, the /api/public/slack/install endpoint initiates Slack OAu… |