CVE-2026-46440EPSS p16.2%

CVE-2026-46440CVE-2026-46440

flowiseai / flowise

Description

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.1.2, the checkBasicAuth endpoint validates credentials in plaintext without rate limiting and with direct comparison. This issue has been patched in version 3.1.2.

Scoring

CVSS 9.1 ()
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS0.25% probability of exploitation · percentile 16.2% · 2026-06-19T12:03:05Z
Last modified2026-06-11

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-41273
CVE
CVE-2026-46443
CVE
CVE-2026-46444
CVE
CVE-2026-41276
CVE
CVE-2026-30820
CVE
CVE-2026-41267
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.