N/A

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2025-34267

GHSA ID

GHSA-r4hh-pcgx-j5r2

EPSS Score

CWE

CWE-77

Published

10/14/2025

Updated

10/14/2025

KEV Status

Technology

JavaScript

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-34267

CVE-2025-34267: Flowise: Authenticated Command Execution and Sandbox Bypass via Puppeteer and Playwright Packages

Flowise v3.0.1 < 3.0.8 and all versions after with 'ALLOW_BUILTIN_DEP' enabled contain an authenticated remote code execution vulnerability and node VM sandbox escape due to insecure use of integrated modules (Puppeteer and Playwright) within the nodevm execution environment. An authenticated attacker able to create or run a tool that leverages Puppeteer/Playwright can specify attacker-controlled browser binary paths and parameters. When the tool executes, the attacker-controlled executable/parameters are run on the host and circumvent the intended nodevm sandbox restrictions, resulting in execution of arbitrary code in the context of the host.

NOTE: This vulnerability was incorrectly assigned as a duplicate CVE-2025-26319 and should be considered distinct from that identifier.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2025-34267

CVE-2025-34267:

N/A

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2025-34267

GHSA ID

GHSA-r4hh-pcgx-j5r2

EPSS Score

CWE

CWE-77

Published

10/14/2025

Updated

10/14/2025

KEV Status

Technology

JavaScript

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
flowise	npm	>= 3.0.1, < 3.0.8	3.0.8

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability lies in the executeJavaScriptCode function located in packages/components/src/utils.ts. The provided patch for commit 10aa58e53b5bb7ef322d9f95c1a8b8850817cc35 clearly shows the modification in this function. Before the patch, the function would concatenate availableDependencies (which includes Puppeteer and Playwright) with externalDeps without any restriction. This allowed an authenticated attacker to use these built-in modules to execute arbitrary commands, bypassing the sandbox. The fix introduces a check for the ALLOW_BUILTIN_DEP environment variable. If this variable is not explicitly set to true, the availableDependencies are not loaded, effectively preventing the vulnerability. Therefore, the executeJavaScriptCode function is the exact location of the vulnerability.

Vulnerable functions

executeJavaScriptCode

packages/components/src/utils.ts

The function `executeJavaScriptCode` was vulnerable because it allowed the execution of JavaScript code with access to built-in dependencies, including Puppeteer and Playwright. An attacker could craft a malicious script that leverages these dependencies to escape the Node.js VM sandbox and execute arbitrary commands on the host system. The patch mitigates this by introducing an environment variable `ALLOW_BUILTIN_DEP` which is `false` by default, thus restricting access to these potentially dangerous built-in modules.

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

N/A

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2025-34267: Flowise: Authenticated Command Execution and Sandbox Bypass via Puppeteer and Playwright Packages

CVE-2025-34267:

N/A

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

N/A

N/A

Technical Details

Basic Information

Basic Information

CVE-2025-34267: Flowise: Authenticated Command Execution and Sandbox Bypass via Puppeteer and Playwright Packages

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI