Security Advisory

CVE-2026-30824

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-07 05:11:15

Last updated 2026-03-09 20:44:24

Assigner GitHub_M

State PUBLISHED

Description

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, the NVIDIA NIM router (/api/v1/nvidia-nim/*) is whitelisted in the global authentication middleware, allowing unauthenticated access to privileged container management and token generation endpoints. This issue has been patched in version 3.0.13.

← Browse all CVEs View on cve.org ↗