Description
Flowise through 2.2.4 contains an unauthenticated arbitrary file upload vulnerability in the /api/v1/attachments endpoint when storageType is set to local. Attackers can exploit path traversal in the chatId and chatflowId parameters to upload malicious files to arbitrary directories, potentially enabling remote code execution and server compromise.
Published: 2026-06-25
Score: 9.3 Critical
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Flowise versions up to 2.2.4 contain a flaw in the /api/v1/attachments endpoint that allows attackers to upload files without authentication when storageType is set to local. By providing specially crafted values for the chatId and chatflowId parameters, an attacker can exploit a path‑traversal vulnerability to place files in arbitrary directories on the host. This uncontrolled write capability can lead to remote code execution and full server compromise if a malicious payload is uploaded to a directory used by the application or system binaries.

Affected Systems

The vulnerability is present in Flowise 2.2.4 and earlier when operating with local storage. No specific product version beyond 2.2.4 was enumerated, so all installations running 2.2.4 or prior with local storage are affected. The CVE references include advisories that confirm the issue, but no additional vendor or patch version information is supplied in the CNA data.

Risk and Exploitability

The CVSS score of 9.3 indicates a high severity impact. EPSS is not available, so the precise exploitation probability cannot be quantified, and the vulnerability is not listed in CISA KEV. The attack vector is inferred from the description: unauthenticated access to an endpoint that accepts file uploads combined with a path‑traversal flaw, which would allow an attacker to write files anywhere on the file system. If an attacker uploads a script or binary and places it in an executable location, remote code execution can be achieved, resulting in full server compromise.

Generated by OpenCVE AI on June 25, 2026 at 23:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Flowise patch that removes the unauthenticated upload flaw as soon as it is released.
  • If a patch is not yet available, disable local storage and switch to a non‑local storage type, or enforce authentication on the /api/v1/attachments endpoint and validate the chatId and chatflowId parameters to prevent path traversal.
  • Restrict network access to the attachment upload endpoint, allowing only trusted IP ranges or internal networks to reach it.

Generated by OpenCVE AI on June 25, 2026 at 23:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 25 Jun 2026 22:00:00 +0000

Type Values Removed Values Added
Description Flowise through 2.2.4 contains an unauthenticated arbitrary file upload vulnerability in the /api/v1/attachments endpoint when storageType is set to local. Attackers can exploit path traversal in the chatId and chatflowId parameters to upload malicious files to arbitrary directories, potentially enabling remote code execution and server compromise.
Title Flowise - Arbitrary File Upload via Unauthenticated /api/v1/attachments Endpoint
First Time appeared Flowiseai
Flowiseai flowise
Weaknesses CWE-73
CPEs cpe:2.3:a:flowiseai:flowise:*:*:*:*:*:*:*:*
Vendors & Products Flowiseai
Flowiseai flowise
References
Metrics cvssV4_0

{'score': 9.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Flowiseai Flowise
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-25T21:41:04.896Z

Reserved: 2026-06-20T01:48:36.755Z

Link: CVE-2025-71333

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-25T23:30:16Z

Weaknesses
  • CWE-73

    External Control of File Name or Path