CVE-2026-43995: CWE-918: Server-Side Request Forgery (SSRF) in FlowiseAI Flowise
CVE-2026-43995 is a Server-Side Request Forgery (SSRF) vulnerability in FlowiseAI's Flowise product versions prior to 3. 1. 0. The issue arises because multiple tool implementations directly use raw HTTP clients (node-fetch, axios) instead of a secured wrapper, allowing potential SSRF attacks. This vulnerability has a medium severity with a CVSS score of 5. 3. The vulnerability is fixed in version 3. 1. 0 of Flowise.
AI Analysis
Technical Summary
FlowiseAI's Flowise, a drag-and-drop interface for building customized large language model flows, contained an SSRF vulnerability (CWE-918) in versions before 3.1.0. Specifically, several tools (OpenAPIToolkit.ts, WebScraperTool.ts, MCP/core.ts, Arxiv/core.ts) directly invoked raw HTTP clients such as node-fetch and axios without using a secured wrapper, which could be exploited to perform SSRF attacks. The vulnerability is addressed by updating to Flowise version 3.1.0, where these tools use the secured HTTP client wrapper.
Potential Impact
The vulnerability allows an attacker with at least limited privileges (PR:L) to potentially induce the server to make unauthorized HTTP requests to internal or external systems, which could lead to information disclosure or interaction with unintended network resources. The CVSS 4.0 vector indicates low to limited impact on confidentiality, integrity, and availability, consistent with a medium severity rating.
Mitigation Recommendations
Upgrade Flowise to version 3.1.0 or later, where the SSRF vulnerability is fixed by replacing raw HTTP client usage with a secured wrapper. Since this is an on-premises product, users must apply this update themselves. Patch status is confirmed by the vendor's versioning information.
CVE-2026-43995: CWE-918: Server-Side Request Forgery (SSRF) in FlowiseAI Flowise
Description
CVE-2026-43995 is a Server-Side Request Forgery (SSRF) vulnerability in FlowiseAI's Flowise product versions prior to 3. 1. 0. The issue arises because multiple tool implementations directly use raw HTTP clients (node-fetch, axios) instead of a secured wrapper, allowing potential SSRF attacks. This vulnerability has a medium severity with a CVSS score of 5. 3. The vulnerability is fixed in version 3. 1. 0 of Flowise.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
FlowiseAI's Flowise, a drag-and-drop interface for building customized large language model flows, contained an SSRF vulnerability (CWE-918) in versions before 3.1.0. Specifically, several tools (OpenAPIToolkit.ts, WebScraperTool.ts, MCP/core.ts, Arxiv/core.ts) directly invoked raw HTTP clients such as node-fetch and axios without using a secured wrapper, which could be exploited to perform SSRF attacks. The vulnerability is addressed by updating to Flowise version 3.1.0, where these tools use the secured HTTP client wrapper.
Potential Impact
The vulnerability allows an attacker with at least limited privileges (PR:L) to potentially induce the server to make unauthorized HTTP requests to internal or external systems, which could lead to information disclosure or interaction with unintended network resources. The CVSS 4.0 vector indicates low to limited impact on confidentiality, integrity, and availability, consistent with a medium severity rating.
Mitigation Recommendations
Upgrade Flowise to version 3.1.0 or later, where the SSRF vulnerability is fixed by replacing raw HTTP client usage with a secured wrapper. Since this is an on-premises product, users must apply this update themselves. Patch status is confirmed by the vendor's versioning information.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-05-04T20:24:31.917Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a021aa7cbff5d8610430534
Added to database: 5/11/2026, 6:06:31 PM
Last enriched: 5/11/2026, 6:23:19 PM
Last updated: 5/11/2026, 8:10:10 PM
Views: 6
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.