A vulnerability categorized as critical has been discovered in Flowise up to 3.0.9 . Impacted is an unknown function of the component Password Change Handler . Such manipulation leads to session expiration. This vulnerability is referenced as CVE-2025-71335 . It is possible to launch the attack remotely. No exploit is available. It is advisable to upgrade the affected component.