FortiDevSec is an application security testing product that offers a comprehensive SaaS based continuous application testing for software Developers and DevOps, without the need for any security expertise
This article describes the detection of the Langflow Unauth RCE Attack (CVE-2025-3248).
CVE-2025-3248 is a critical RCE flaw in Langflow <1.3.0, allowing unauthenticated attackers to run arbitrary Python code via the /api/v1/validate/code endpoint due to unsafe use of exec() without proper security checks.
Scope
FortiDevSec SCA scanner updated in version 25.1.
Solution
Detection against these vulnerabilities is empowered by the FortiDevSec Software Composition Analysis (SCA) scanner.
This technology enables FortiDevSec to assess with a high confidence level if the application code base is vulnerable to a specific vulnerability by identifying open-source software dependencies.
The SCA scanner is enabled by default. Once the scan is performed on an application, the result appears under the Software Composition Analysis tab.
A step-by-step guide on how to scan an application is available in the user guide.
For more details regarding mitigating the vulnerability by utilizing Fortinet products, refer to the Outbreak Alert: Langflow Unauth RCE Attack.
