PT-2026-41206 · Flowiseai+2 · Flowise

CVE-2026-46441

·

Published

2026-05-14

·

Updated

2026-06-11

CVSS v3.1

9.6

Critical

VectorAV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions Flowise versions prior to 3.1.2
Description A mass assignment issue exists in the assistant update endpoint. This occurs when the server does not restrict which properties can be modified by the client, allowing user-controlled request bodies to include fields that should be managed exclusively by the backend. Authenticated users can manipulate server-controlled properties, specifically workspaceId, createdDate, and updatedDate, via the 'PUT /api/v1/assistants/{assistantId}' endpoint. Due to a lack of server-side validation and authorization checks, an attacker can change the workspaceId field to reassign assistants to arbitrary workspaces, which breaks tenant isolation in multi-workspace environments.
Recommendations Update to version 3.1.2.

Exploit

Fix

Improper Access Control

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-46441
GHSA-HP26-Q66V-Q2W7

Affected Products

Flowise