cbcvebase.
CVE-2024-36420
published 2024-07-01

CVE-2024-36420: Flowise is a drag & drop user interface to build a customized large language model flow. In version 1.4.3 of Flowise, the `/api/v1/openai-assistants-file`…

PriorityP354high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
1.76%
75.2th percentile
Flowise is a drag & drop user interface to build a customized large language model flow. In version 1.4.3 of Flowise, the `/api/v1/openai-assistants-file` endpoint in `index.ts` is vulnerable to arbitrary file read due to lack of sanitization of the `fileName` body parameter. No known patches for this issue are available.

Affected

3 ranges
VendorProductVersion rangeFixed in
flowiseaiflowise<= 1.4.3
flowiseaiflowise
flowiseaiflowise0 – 1.4.3

Detection & IOCsextracted from sources · hover to see the quote

url/api/v1/openai-assistants-file
commandPOST /api/v1/openai-assistants-file HTTP/1.1 Content-Type: application/json {"fileName":"../../../../etc/passwd"}
yara
rule CVE_2024_36420_Flowise_LFI { strings: $req = "/api/v1/openai-assistants-file" $traversal = "../../../../etc/passwd" condition: $req and $traversal }
  • Detect POST requests to /api/v1/openai-assistants-file containing path traversal sequences (e.g., '../') in the 'fileName' JSON body parameter
  • Successful exploitation returns HTTP 200 with response body matching Unix /etc/passwd format (root:*:0:0:) and a response header containing 'attachment; filename=passwd'
  • Match response body for passwd file patterns: lines beginning with 'root:[^:]*:0:0:' or 'daemon:[^:]*:[0-9]+:[0-9]+:' to confirm successful arbitrary file read
  • ·No known patches are available for this vulnerability in Flowise 1.4.3; the endpoint is unauthenticated (unauth tag), meaning no credentials are required to exploit it
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.