THREAT OPS › Threat News › Weekly Metasploit Update: Exploits for FlowiseAI CSV Agent and MacOS Package Kit
Weekly Metasploit Update: Exploits for FlowiseAI CSV Agent and MacOS Package Kit
<h2>More AI, more software, more bugs!</h2><p>AI, it's all you hear about nowadays and everyone's got an opinion on it. Here at Metasploit, we care less about those opinions and more about the growing attack surface all this new software brings with it (yeehaw exploits!). Take for example the new Flowise CSV Agent Prompt Injection RCE brought to you by Takahiro Yokoyama and zdi-disclosures. Flowis
Indicators of compromise
- CVE-2026-41264cve
- CVE-2024-27822cve
- https://attackerkb.com/search?q=CVE-2026-41264&referrer=blogurl
- https://attackerkb.com/search?q=CVE-2024-27822&referrer=blogurl
- https://docs.metasploit.com/url