CVE-2026-33017: How a Single HTTP Request to Langflow Lets Attackers Drain Every Crypto Wallet Your AI Agent Touches

TL;DR A critical unauthenticated RCE in Langflow (CVE-2026-33017, CVSS 9.3) lets attackers execute arbitrary Python on any publicly exposed instance - no login required. Exploitation began within 20 hours of disclosure. Because Langflow is the go-to visual builder for AI agents that interact with crypto wallets, DEX routers, and DeFi protocols, a compromised instance hands attackers every API key, private key, and RPC endpoint your agent pipeline s.