{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/tags/configuration-injection/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["Flowise"],"_cs_severities":["critical"],"_cs_tags":["web-vulnerability","rce","sandbox-escape","node.js","configuration-injection"],"_cs_type":"advisory","_cs_vendors":["Flowise"],"content_html":"\u003cp\u003eFlowise versions prior to 2.1.4 are affected by CVE-2024-58351, a critical vulnerability allowing configuration injection leading to remote code execution (RCE) and sandbox escape. This flaw stems from the \u003ccode\u003eoverrideConfig\u003c/code\u003e option, available in both the frontend web integration and the backend Prediction API, which is enabled by default without an allow-list for variables. Attackers can exploit this by injecting malicious configurations that bypass the \u003ccode\u003evm2\u003c/code\u003e sandbox, designed to isolate untrusted code. Successful exploitation grants the attacker the ability to execute arbitrary code on the underlying server, perform denial of service, conduct server-side request forgery (SSRF), inject prompts, and exfiltrate sensitive server data and variables. This vulnerability specifically impacts the Flowise instance under attack and does not inherently persist to other users.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003e\u003cstrong\u003eInitial Access\u003c/strong\u003e: An attacker identifies a vulnerable Flowise instance exposing its frontend web integration or backend Prediction API (e.g., \u003ccode\u003e/api/v1/prediction\u003c/code\u003e, \u003ccode\u003e/api/v1/chat\u003c/code\u003e).\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eConfiguration Injection\u003c/strong\u003e: The attacker sends a crafted HTTP POST request to a vulnerable endpoint, embedding malicious JavaScript code or commands within the \u003ccode\u003eoverrideConfig\u003c/code\u003e option.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVM2 Sandbox Bypass\u003c/strong\u003e: The injected configuration exploits known vulnerabilities or bypass techniques within the \u003ccode\u003evm2\u003c/code\u003e JavaScript sandbox, which Flowise relies on for code isolation.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRemote Code Execution\u003c/strong\u003e: The successful sandbox bypass allows the attacker to execute arbitrary operating system commands on the underlying server, breaking out of the confined \u003ccode\u003evm2\u003c/code\u003e environment.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eImpactful Actions\u003c/strong\u003e: The executed commands perform various malicious activities such as reading sensitive environment variables (e.g., \u003ccode\u003eprocess.env\u003c/code\u003e), accessing local system files (e.g., \u003ccode\u003e/etc/passwd\u003c/code\u003e), initiating Server-Side Request Forgery (SSRF) to internal network resources, or causing a Denial of Service (DoS) by crashing the Node.js process.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eData Exfiltration\u003c/strong\u003e: If successful in reading sensitive data, the attacker may then exfiltrate this information to an external, attacker-controlled server.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of CVE-2024-58351 can lead to a complete compromise of the Flowise server. Attackers can achieve remote code execution, allowing them to gain full control over the affected system. This includes the ability to steal sensitive data, modify system configurations, disrupt services through denial of service attacks, or pivot to other systems within the network via server-side request forgery. While the advisory notes these issues are \u0026quot;self-targeted\u0026quot; and do not persist to other users, the impact on the compromised Flowise instance and the data it processes is severe, potentially leading to significant data breaches or operational disruptions.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImmediately upgrade Flowise to version 2.1.4 or higher to patch CVE-2024-58351.\u003c/li\u003e\n\u003cli\u003eDeploy the Sigma rule \u0026quot;Detects CVE-2024-58351 Exploitation - Flowise Configuration Injection Attempt\u0026quot; to your web server logs to identify suspicious \u003ccode\u003eoverrideConfig\u003c/code\u003e usage.\u003c/li\u003e\n\u003cli\u003eDeploy the Sigma rule \u0026quot;Detects CVE-2024-58351 Exploitation - Suspicious Process Creation Post-RCE\u0026quot; to your endpoint detection and response (EDR) or system logs (e.g., Sysmon, Auditd) to detect post-exploitation activity.\u003c/li\u003e\n\u003cli\u003eEnable comprehensive logging for web server access (e.g., HTTP request bodies, URIs) and process creation events on servers hosting Flowise instances.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-06-20T16:25:35Z","date_published":"2026-06-20T16:25:35Z","id":"https://feed.craftedsignal.io/briefs/2026-06-flowise-cve-2024-58351/","summary":"Flowise versions before 2.1.4 are critically vulnerable to configuration injection (CVE-2024-58351) via the `overrideConfig` option in both its frontend web integration and backend Prediction API, which, due to a bypassable `vm2` sandbox, allows attackers to achieve remote code execution, sandbox escape, denial of service, server-side request forgery, prompt injection, and server variable/data exfiltration.","title":"CVE-2024-58351: Flowise Remote Code Execution via Configuration Injection","url":"https://feed.craftedsignal.io/briefs/2026-06-flowise-cve-2024-58351/"}],"language":"en","title":"CraftedSignal Threat Feed - Configuration-Injection","version":"https://jsonfeed.org/version/1.1"}