Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

2026-04-07

1 min read

by info@thehackernews.com (The Hacker News)

Read Original

Get the latest tech trends every morning

Receive daily AI-curated summaries of engineering articles from top tech companies worldwide.

Endigest AI Core Summary

A critical CVSS 10.0 remote code execution vulnerability (CVE-2025-59528) in Flowise, an open-source AI platform, is under active exploitation with over 12,000 exposed instances.

•The flaw resides in the CustomMCP node, which parses user-provided mcpServerConfig strings and executes JavaScript code without any security validation
•Successful exploitation grants access to dangerous Node.js modules like child_process and fs, enabling full system compromise, file system access, and data exfiltration
•Only an API token is required to exploit the vulnerability, posing extreme risk to business continuity and customer data
•Exploitation activity has been traced to a single Starlink IP address; this is the third Flowise vulnerability observed being exploited in the wild
•

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

Get the latest tech trends every morning

Endigest AI Core Summary

Related Articles

Guardrails at the gateway: Securing AI inference on GKE with Model Armor

EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets

ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025