LOWVulnerability
Global

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

Tuesday, April 7, 2026 at 05:56 AM UTC·Source: The Hacker News

Updated: Tuesday, April 7, 2026 at 05:58 AM UTC

Executive Summary

Threat actors are exploiting a maximum-severity security flaw in Flowise, an open-source artificial intelligence (AI) platform, according to new findings from VulnCheck. The vulnerability in question is CVE-2025-59528 (CVSS score: 10.0), a code injection vulnerability that could result in remote code execution. "The CustomMCP node allows users to input configuration settings for connecting

Analysis

Threat actors are exploiting a maximum-severity security flaw in Flowise, an open-source artificial intelligence (AI) platform, according to new findings from VulnCheck. The vulnerability in question is CVE-2025-59528 (CVSS score: 10.0), a code injection vulnerability that could result in remote code execution. "The CustomMCP node allows users to input configuration settings for connecting

Indicators of Compromise (1)

CVE (1)
CVE-2025-59528
NVDMITRE CVE
Source Attribution

Originally published by The Hacker News on Apr 7, 2026.

Related Threats

CRITICALVulnerabilityNEW

Hackers exploit critical flaw in Ninja Forms WordPress plugin

A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress allows uploading arbitrary files without authentication, which can lead to remote code execution. [...]

BleepingComputer
LOWVulnerability

FBI, Pentagon warn of Iran hacking groups targeting operational technology

The advisory said Iranian actors are targeting local municipal governments, water and wastewater systems and the energy sector.

The Record
MEDIUMVulnerability

Grafana Patches AI Bug That Could Have Leaked User Data

By hiding malicious instructions on an attacker-controlled Web page, AI could ingest orders as benign and return sensitive data to the attacker's server.

Dark Reading