cbcvebase.
CVE-2026-25049
published 2026-02-04

CVE-2026-25049: n8n is an open source workflow automation platform. Prior to versions 1.123.17 and 2.5.2, an authenticated user with permission to create or modify workflows…

PriorityP264critical9.9CVSS 3.1
AVNACLPRLUINSCCHIHAH
EPSS
1.20%
64.2th percentile
n8n is an open source workflow automation platform. Prior to versions 1.123.17 and 2.5.2, an authenticated user with permission to create or modify workflows could abuse crafted expressions in workflow parameters to trigger unintended system command execution on the host running n8n. This issue has been patched in versions 1.123.17 and 2.5.2.

Affected

6 ranges
VendorProductVersion rangeFixed in
n8n-ion8n< 1.123.171.123.17
n8n-ion8n< 2.5.22.5.2
n8nn8n< 1.123.171.123.17
n8nn8n>= 0 < 1.123.171.123.17
n8nn8n>= 2.0.0 < 2.5.22.5.2
n8nn8n>= 2.0.0 < 2.5.22.5.2

Detection & IOCsextracted from sources · hover to see the quote

  • Monitor n8n workflow creation/modification events by authenticated users for expressions containing type-confusion patterns — specifically non-string keys in property accesses — which bypass sanitization controls.
  • Review stored n8n workflows for suspicious expressions that attempt to access the filesystem, execute system commands, or exfiltrate credentials/API keys/OAuth tokens.
  • Monitor for scanning/probing activity targeting exposed n8n endpoints, particularly requests referencing /proc filesystem paths, which indicate post-exploitation interest.
  • Alert on GreyNoise-flagged probing of n8n endpoints: at least 33,000 requests were logged between January 27 and February 3 targeting exposed n8n instances.
  • ·Patched versions are 1.123.17 and 2.5.2; all prior versions of both branches are vulnerable to this sandbox escape RCE.
  • ·The vulnerability requires only authenticated access with workflow create/edit permissions — no elevated privileges needed — making the attack surface broad in multi-tenant deployments.
  • ·Public PoC exploits exist from both Endor Labs and SecureLayer7, significantly lowering the bar for exploitation.

CVSS provenance

nvdv3.19.9CRITICALCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
nvdv4.09.4CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
ghsa8.8HIGH
osv8.8HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.