Critical Flowise RCE Vulnerability Exploited, Thousands of Systems at Risk

Critical Flowise RCE Vulnerability Exploited, Thousands of Systems at Risk

First seen 7 Apr 2026, 19:29 UTC BleepingcomputerThecyberexpressCsoonline 93% similarity 72.9

Article Content

Browse articles
ThreatCluster

A critical remote code execution (RCE) vulnerability in the Flowise low-code platform, tracked as CVE-2025-59528, is being actively exploited by threat actors. This flaw allows attackers to inject arbitrary JavaScript code due to improper validation of user input in the CustomMCP node, which connects to external Model Context Protocol (MCP) servers. The vulnerability was first disclosed in September 2025, and despite a patch being available since version 3.0.6, exploitation attempts have been observed as of April 6, 2026. Security researchers estimate that between 12,000 and 15,000 instances of Flowise are currently exposed on the public internet, with exploitation activity originating from a single Starlink IP address. Additionally, two other vulnerabilities (CVE-2025-8943 and CVE-2025-26319) have also been flagged for active exploitation. Users are urged to upgrade to the latest version, 3.1.1, to mitigate risks.

Key Points: • CVE-2025-59528 allows arbitrary JavaScript code execution in Flowise due to improper input validation. • Exploitation attempts have been detected, with 12,000 to 15,000 vulnerable Flowise instances exposed online. • Users are recommended to upgrade to version 3.1.1 or at least 3.0.6 to protect against this vulnerability.

ThreatCluster AI

Timeline

2025-03-04
CVE-2025-26319 published
2025-08-14
CVE-2025-8943 published
2025-09-22
CVE-2025-59528 publicly disclosed
2026-03-25
Flowise version 3.1.1 released
2026-04-06
First exploitation of CVE-2025-59528 detected

Community

Browse all →