A mass-assignment flaw in the Flowise platform allows authenticated users to hijack assistants from other workspaces, leading to unauthorized data access and flow manipulation.

This is a mass-assignment vulnerability occurring during the creation or update of assistants. By manipulating the workspaceId in a PUT request, an authenticated user can reassign an assistant to a workspace they control.

With a CVSS score of 8.8, this vulnerability allows for significant unauthorized access within multi-tenant or collaborative environments. The potential for cross-workspace takeover could result in the compromise of sensitive LLM flows and proprietary data, severely impacting organizational security posture.

Immediate Action: Update the Flowise platform to version 3.1.2 or later to correct the mass-assignment vulnerability.

Proactive Monitoring: Review access and API logs for unusual PUT requests or unauthorized attempts to modify workspace associations.

Compensating Controls: Implement strict role-based access control (RBAC) and validate that users only have permissions within their intended workspace to limit the impact of such flaws.

Public Exploit Available: False

The ability to manipulate workspace associations represents a critical authorization bypass. Administrators must update to the latest version immediately to ensure that workspace isolation is properly enforced and to prevent unauthorized access to sensitive LLM flows.