CVE-2026-30824 Scanner

Flowise is a sophisticated software tool designed to help users create customized large language model flows through an intuitive drag-and-drop user interface. It is often employed in environments requiring advanced AI model management and deployment. Organizations focused on machine learning, AI development, and large-scale data processing find Flowise particularly valuable. It assists in integrating and managing different AI models in an efficient manner, simplifying complex workflows and enabling seamless scalability. Users of Flowise benefit from its flexibility, capability for handling large datasets, and compatibility with various AI models. The platform's significant integration capabilities allow for enhanced AI model lifecycle management, satisfying a diverse range of enterprise needs.

The Unauthorized Admin Access vulnerability in Flowise arises from a lack of authentication checks on specific endpoints. This allows attackers to exploit the /api/v1/nvidia-nim/ endpoints, gaining unauthorized access to sensitive operations such as container management and token generation. The vulnerability poses a high risk as it potentially grants attackers significant administrative privileges over the system. By circumventing authorization protocols, attackers can execute operations meant for privileged users, posing threats to data integrity and system security. This vulnerability highlights the importance of enforcing strict authentication measures throughout application endpoints.

Technically, the vulnerability is due to the whitelist exclusion of the NVIDIA NIM router in the authentication middleware, particularly concerning the /api/v1/nvidia-nim/get-token endpoint. Without proper authorization checks, this endpoint can be accessed by unauthorized users to obtain access tokens. The token generation process, once exploited, can lead to unauthorized manipulation and control over the application's container management functionalities. Attackers exploiting this vulnerability may use their unauthorized access to elevate privileges or deploy malicious code, potentially leading to a system-wide compromise. The specific vulnerable parameter involves access tokens that are unprotected due to the flaw in authentication controls.

When exploited, the Unauthorized Admin Access vulnerability may result in attackers gaining full control over system functionalities, enabling them to manage containers and generate sensitive tokens. This unauthorized access can facilitate further attacks, such as deploying malicious software, altering data, and extracting confidential information. The vulnerability makes the system susceptible to potential service disruptions and data breaches, harming both operational integrity and organizational confidentiality. In severe cases, exploitation may lead to the total compromise of the system, rendering security defenses ineffective. As such, timely remediation is crucial to prevent these adverse effects and maintain system security.

REFERENCES

• https://github.com/FlowiseAI/Flowise/security/advisories/GHSA-5f53-522j-j454
• https://nvd.nist.gov/vuln/detail/CVE-2026-30824
• https://github.com/FlowiseAI/Flowise