CVE-2025-8943CRITICAL 9.8EPSS p99.3%

CVE-2025-8943CVE-2025-8943

Description

The Custom MCPs feature is designed to execute OS commands, for instance, using tools like `npx` to spin up local MCP Servers. However, Flowise's inherent authentication and authorization model is minimal and lacks role-based access controls (RBAC). Furthermore, in Flowise versions before 3.0.1 the default installation operates without authentication unless explicitly configured. This combination allows unauthenticated network attackers to execute unsandboxed OS commands.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS70.87% probability of exploitation · percentile 99.3% · 2026-06-18T12:00:27Z
Published2025-08-14
Last modified2025-09-23

Underlying weaknesses· 2

CWE-306CWE-862

References

  1. https://research.jfrog.com/vulnerabilities/flowise-os-command-remote-code-execution-jfsa-2025-001380578/

2

TypeTargetConfidenceTier
WeaknessMissing Authentication for Critical Functioncwe-3060%live
WeaknessMissing Authorizationcwe-8620%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-40933
CVE
CVE-2025-59528
CVE
CVE-2026-46442
CVE
CVE-2025-61913
CVE
CVE-2025-34267
CVE
CVE-2026-30820
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.