Описание
An Authentication Bypass vulnerability exists in Flowise version 1.8.2. This could allow a remote, unauthenticated attacker to access API endpoints as an administrator and allow them to access restricted functionality.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:flowiseai:flowise:1.8.2:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.60842
Средний
9.8 Critical
CVSS3
8.1 High
CVSS3
Дефекты
CWE-287
CWE-287
Связанные уязвимости
EPSS
Процентиль: 98%
0.60842
Средний
9.8 Critical
CVSS3
8.1 High
CVSS3
Дефекты
CWE-287
CWE-287