Loading market data...
← Back to CVE feed

CVE-2026-12821

MEDIUM CVSS 6.3 View on NVD ↗

Description

A vulnerability was determined in FlowiseAI Flowise up to 3.1.2. The impacted element is an unknown function of the file packages/components/nodes/documentloaders/S3/S3.ts of the component S3 Document Loader. Executing a manipulation can lead to path traversal. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Published: Jun 22, 2026 00:16 UTC Modified: Jun 22, 2026 00:16 UTC