CVE-2026-46478 | FlowiseAI Flowise up to 3.1.1 dynamically-determined object attributes

Inserito da Angelo Barbosa | Giu 8, 2026 | CVE

A vulnerability was found in FlowiseAI Flowise up to 3.1.1. It has been rated as critical. This vulnerability affects unknown code. This manipulation causes dynamically-determined object attributes.

The identification of this vulnerability is CVE-2026-46478. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is advised.

CVE-2026-46478 | FlowiseAI Flowise up to 3.1.1 dynamically-determined object attributes

Post correlati

CVE-2026-21486 | InternationalColorConsortium iccDEV up to 2.3.1.1/2.3.1.2 CIccSparseMatrix heap-based overflow (GHSA-mg98-j5q2-674w)

CVE-2026-35037 | lin-snow Ech0 up to 4.2.7 Endpoint /api/website/title website_url server-side request forgery (GHSA-cqgf-f4x7-g6wc)

CVE-2024-49840 | Qualcomm Snapdragon Compute FastConnect 6900 up to WSA8845 IOCTL Call out-of-range pointer offset

CVE-2025-7547 | Campcodes Online Movie Theater Seat Reservation System 1.0 /admin/admin_class.php save_movie cover unrestricted upload