CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-8182

An Unauthenticated Denial of Service (DoS) vulnerability exists in Flowise version 1.8.2 leading to a complete crash of the instance running a vulnerable version due to improper handling of user supplied input to the “/api/v1/get-upload-file” api endpoint.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.5%

CVSS Severity

CVSS v3 Score 7.5

References

https://tenable.com/security/research/tra-2024-34

Products affected by CVE-2024-8182

Flowiseai » Flowise » Version: 1.8.2

cpe:2.3:a:flowiseai:flowise:1.8.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-8182

Products

Pricing

Contact Us