CNNVD-202602-1662 Information

CNNVD ID

CNNVD-202602-1662

Related CVE

CVE-2026-2095

• CNNVD Published: 2026-02-10

Description (Chinese)

Flowring Agentflow是中国华苓（Flowring）公司的一个智能流程自动化(RPA)平台。 Flowring Agentflow存在安全漏洞，该漏洞源于身份验证绕过，可能导致未经验证的远程攻击者获取任意用户身份验证令牌并以任何用户身份登录系统。

Description (English)

Flowring Agentflow is an intelligent process automation (RPA) platform for Flowring China. There is a security loophole in Flowing Agentflow, which stems from the circumvention of identification, which may lead uncertified remote assailants to obtain an arbitrary user identification badge and log on to any user identification system.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

华苓

Published

2026-02-10

Last Modified

2026-02-24

References

https://forum.flowring.com/post/view?bid=72&id=45611&tpg=1&ppg=1&sty=1#45939 https://www.twcert.org.tw/en/cp-139-10700-3534d-2.html https://www.twcert.org.tw/tw/cp-132-10699-49c0b-1.html