Description
A vulnerability was determined in FlowiseAI Flowise up to 3.1.2. The impacted element is an unknown function of the file packages/components/nodes/documentloaders/S3/S3.ts of the component S3 Document Loader. Executing a manipulation can lead to path traversal. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-06-21
Score: 5.3 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The S3 Document Loader contains a path traversal vulnerability in S3.ts, allowing an attacker to supply malicious path components that cause the loader to resolve to directories outside of the intended S3 bucket path. This flaw can lead to reading or executing files on the host system, compromising confidentiality and integrity. The flaw is a classic path traversal weakness identified as CWE-22.

Affected Systems

The affected product is FlowiseAI's Flowise application up to version 3.1.2, as identified by the vendor naming FlowiseAI:Flowise. The vulnerability resides in the documentloaders/S3/S3.ts component. No specific versions beyond 3.1.2 are listed; newer releases are presumed patched. The CPE enumerates flowiseai:flowise.

Risk and Exploitability

The CVSS score is 5.3, indicating a moderate risk. EPSS is not available, so exploitation probability is uncertain; the vulnerability can be leveraged remotely through crafted S3 loader requests. It is not listed in the CISA KEV catalog, implying no publicly known exploit, but the remote nature and lack of a mitigation response from the vendor increase the potential impact. Attackers could remotely execute the Object Key manipulation if the component is exposed over the network, enabling traversal into server files.

Generated by OpenCVE AI on June 22, 2026 at 00:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Verify and apply any vendor update for Flowise AI Flowise version 3.1.3 or later that fixes key handling in S3 Document Loader.
  • If an update is unavailable, isolate or disable the S3 Document Loader component until a fix is released.
  • Enforce strict path validation on the S3 bucket object key, e.g., restrict to allowed prefixes or use sanitized paths to prevent traversal.
  • Monitor access logs for anomalous path requests and file read attempts.

Generated by OpenCVE AI on June 22, 2026 at 00:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 21 Jun 2026 23:30:00 +0000

Type Values Removed Values Added
Description A vulnerability was determined in FlowiseAI Flowise up to 3.1.2. The impacted element is an unknown function of the file packages/components/nodes/documentloaders/S3/S3.ts of the component S3 Document Loader. Executing a manipulation can lead to path traversal. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.
Title FlowiseAI Flowise S3 Document Loader S3.ts path traversal
First Time appeared Flowiseai
Flowiseai flowise
Weaknesses CWE-22
CPEs cpe:2.3:a:flowiseai:flowise:*:*:*:*:*:*:*:*
Vendors & Products Flowiseai
Flowiseai flowise
References
Metrics cvssV2_0

{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Flowiseai Flowise
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-21T23:15:08.186Z

Reserved: 2026-06-21T13:10:54.859Z

Link: CVE-2026-12821

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-22T01:30:06Z

Weaknesses
  • CWE-22

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')