Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
Current Behavior Chatting with an Agent app that has a knowledge base attached throws an NPE on the first message (during RAG retrieval), so RAG-backed chat is unusable whenever the agent-level ...