Critical Flowise AI Agent Builder Vulnerability Under Active Exploitation

A critical security vulnerability in the Flowise AI Agent Builder platform has been discovered, with threat actors actively exploiting the flaw to gain unauthorized access to sensitive systems.

The vulnerability, identified as CVE-2025-59528, carries a CVSS score of 10.0, indicating a maximum-severity security risk. This code injection vulnerability can be leveraged to achieve remote code execution (RCE), allowing attackers to execute malicious code on affected systems.

The CustomMCP node in the Flowise platform is the entry point for this vulnerability, as it allows users to input configuration settings for connecting to external systems. However, this flexibility also introduces a security risk, as attackers can craft malicious input to inject code and gain control over the system.

According to recent findings, over 12,000 instances of the Flowise AI Agent Builder platform are exposed to the internet, making them potential targets for threat actors seeking to exploit the CVE-2025-59528 vulnerability.

The active exploitation of this vulnerability highlights the importance of prompt patching and security updates to prevent such attacks. Users of the Flowise AI Agent Builder platform are advised to take immediate action to mitigate the risk of RCE and protect their systems from potential security breaches.

Source: Original Article

Press ESC to close

Share Article:

Tarang Parmar

Cybersecurity Threats: Hybrid P2P Botnet and 13-Year-Old Apache RCE Vulnerability Exploited

German Authorities Uncover Identities of REvil Ransomware Operators