Vulnerabilities
Vulnerable Software
Flowiseai:  >> Flowise  >> 1.8.2  Security Vulnerabilities
An Unauthenticated Denial of Service (DoS) vulnerability exists in Flowise version 1.8.2 leading to a complete crash of the instance running a vulnerable version due to improper handling of user supplied input to the “/api/v1/get-upload-file” api endpoint.
CVSS Score
7.5
EPSS Score
0.139
Published
2024-08-27
An Authentication Bypass vulnerability exists in Flowise version 1.8.2. This could allow a remote, unauthenticated attacker to access API endpoints as an administrator and allow them to access restricted functionality.
CVSS Score
9.8
EPSS Score
0.428
Published
2024-08-27


Contact Us

Shodan ® - All rights reserved