Primary

Context

Flowring Technology Agentflow Account Lockout Bypass Vulnerability

Vulnerability

A vulnerability allowing account lockout bypass has been identified in Agentflow version 4.0, developed by Flowring Technology. This issue enables unauthenticated remote attackers to circumvent account lockout mechanisms, potentially leading to password brute-force attacks.

Impact

Exploitation of this vulnerability could allow for successful password brute-force attacks, increasing the risk of unauthorized account access.

Remediation

Users are advised to log into the CRM and download the available patch.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.7

remediation

6.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.7

remediation

6.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Flowring Technology Agentflow Account Lockout Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Flowring Technology Agentflow

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating