Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed
Summary
Threat actors are actively exploiting a critical remote code execution (RCE) vulnerability (CVE-2025-59528) in the open-source AI platform Flowise. This flaw, with a CVSS score of 10.0, allows attackers to execute arbitrary code on affected systems. Over 12,000 instances of Flowise are estimated to be exposed to this threat.
IFF Assessment
The active exploitation of a maximum severity RCE vulnerability presents a significant immediate threat to organizations using the Flowise AI platform.
Severity
The vulnerability, CVE-2025-59528, is a code injection flaw that allows for remote code execution, indicating a critical impact and high exploitability, thus warranting a CVSS score of 10.0.
Defender Context
Defenders need to immediately assess their exposure to Flowise and patch or isolate any instances running the vulnerable version. This incident highlights the risks associated with open-source AI development platforms and the need for robust vulnerability management practices in the AI ecosystem.