Description
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.1.2, dataset create and update mass-assignment allows cross-workspace dataset takeover. This issue has been patched in version 3.1.2.
Published: 2026-06-08
Score: 7.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a mass-assignment flaw in Flowise’s dataset create and update functions that allows a user from one workspace to add or modify datasets belonging to another workspace. Attackers can thereby take control of datasets that they do not own, compromising the integrity and confidentiality of data in other workspaces.

Affected Systems

All installations of FlowiseAI:Flowise running a version prior to 3.1.2 are affected. The flaw applies to any configuration that exposes the dataset API to users from multiple workspaces, regardless of the number of users in the environment.

Risk and Exploitability

The CVSS score of 7.7 classifies this flaw as high severity. No EPSS data is available, and it is not listed in CISA KEV. Based on the description, it is inferred that the attack vector is the web or API endpoints that handle dataset creation and updates. An authenticated attacker with valid credentials in their own workspace can invoke these endpoints, supply a dataset identifier from another workspace, and persist changes, effectively taking over that dataset. The exploit requires authenticated access and the absence of proper workspace validation in the request handling.

Generated by OpenCVE AI on June 8, 2026 at 16:36 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Flowise to version 3.1.2 or later where the mass-assignment issue is fixed.
  • Verify in custom deployments that the dataset create and update endpoints perform a workspace boundary check and reject requests that target datasets outside the requester’s workspace.
  • Audit existing datasets for unexpected ownership changes performed before the patch, and restore correct ownership or re‑create affected datasets as necessary.

Generated by OpenCVE AI on June 8, 2026 at 16:36 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-5h9v-837x-m97r FlowiseAI: Dataset create+update mass-assignment allows cross-workspace dataset takeover
History

Mon, 15 Jun 2026 14:00:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:flowiseai:flowise:*:*:*:*:*:*:*:*
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Tue, 09 Jun 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 08 Jun 2026 17:00:00 +0000

Type Values Removed Values Added
First Time appeared Flowiseai
Flowiseai flowise
Vendors & Products Flowiseai
Flowiseai flowise

Mon, 08 Jun 2026 15:45:00 +0000

Type Values Removed Values Added
Description Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.1.2, dataset create and update mass-assignment allows cross-workspace dataset takeover. This issue has been patched in version 3.1.2.
Title Flowise: Dataset create+update mass-assignment allows cross-workspace dataset takeover
Weaknesses CWE-915
References
Metrics cvssV4_0

{'score': 7.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Flowiseai Flowise
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-09T14:35:42.983Z

Reserved: 2026-05-14T18:06:06.810Z

Link: CVE-2026-46477

cve-icon Vulnrichment

Updated: 2026-06-09T14:28:39.980Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-08T16:16:42.097

Modified: 2026-06-15T14:02:35.157

Link: CVE-2026-46477

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-08T16:45:26Z

Weaknesses
  • CWE-915

    Improperly Controlled Modification of Dynamically-Determined Object Attributes