A critical security vulnerability affecting Flowise, a popular open-source AI agent builder platform, is currently under active exploitation. The flaw has been assigned the maximum severity score of CVSS 10.0, indicating a remote code execution (RCE) vulnerability of the highest possible risk level, with more than 12,000 exposed instances identified across the internet.
Flowise is widely used by developers and organizations to build and deploy AI-powered workflows and agent pipelines. Its broad adoption makes this vulnerability particularly concerning for the AI development community and enterprises relying on the platform.
The vulnerability allows unauthenticated remote attackers to execute arbitrary code on affected systems, potentially enabling full system compromise, data exfiltration, and lateral movement within affected networks. A CVSS score of 10.0 represents the most critical classification in the Common Vulnerability Scoring System, reserved for flaws that are remotely exploitable with no required user interaction or authentication.
With over 12,000 instances reportedly exposed to the public internet, the attack surface is substantial. Organizations using Flowise are strongly urged to review their deployments immediately, apply available patches or mitigations, and restrict public-facing access to the platform where possible.
Security teams should monitor for indicators of compromise and consider isolating Flowise instances from sensitive internal networks until the vulnerability has been fully remediated.
**Recommendations:**
– Update Flowise to the latest patched version immediately.
– Restrict network access to Flowise instances using firewalls or VPNs.
– Audit logs for signs of unauthorized access or anomalous activity.
– Follow advisories from the Flowise project maintainers and relevant security agencies.
**Sources:**
– The Hacker News: https://thehackernews.com/2026/04/flowise-ai-agent-builder-under-active.html