CVE-2024-36420

Confirmed PUBLISHED

GHSL-2023-232: Flowise Path Injection at /api/v1/openai-assistants-file

FlowiseAI · Flowise

Not yet in CISA KEV

Exploited in the wild Active exploitation observed PoC available

Recommended Action

Prioritize immediate patching and validate internet-facing exposure. Monitor for matching exploitation attempts in your environment.

Confidence
Confirmed
Exploitation Status
Active exploitation observed
Observed in Sensors
Yes
Attempts (30d)
19
Unique Attacker IPs
10
CISA KEV
Not yet in CISA KEV
CVSS / EPSS
7.5 High EPSS 1.8%

At a Glance

Flowise is a drag & drop user interface to build a customized large language model flow. In version 1.4.3 of Flowise, the `/api/v1/openai-assistants-file` endpoint in `index.ts` is vulnerable to arbitrary file read due to lack of sanitization of the `fileName` body parameter. No known patches for this issue are available.

nuclei_scanner
CVE Published
Jul 01, 2024
Exploitation Reported
Jun 21, 2026
CVSS
7.5 High
EPSS
1.8%
Remote Low complexity No user interaction Unauthenticated

Affected Versions

Vendor Product Version Status
flowiseai
flowise

0 to <= 1.4.3

Affected
FlowiseAI
Flowise

<= 1.4.3

Affected

CVE References

Recommended Actions

  • Prioritize immediate patching and validate internet-facing exposure. Monitor for matching exploitation attempts in your environment.
  • Review sensor telemetry for request paths, attacker IPs, and payload patterns that may inform detection and exposure validation.
  • Check enrichment artifacts for scanner coverage and available PoCs before rolling remediation validation.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.