[NEW] [high] n8n: Multiple vulnerabilities
An attacker can exploit multiple vulnerabilities in n8n to escalate privileges, disclose information, manipulate data, perform a Cross-Site Scripting attack, bypass security measures, and execute arbitrary code.
CSIRTS triage
- What
- Multiple vulnerabilities in n8n can lead to privilege escalation, information disclosure, data manipulation, XSS attacks, and arbitrary code execution.
- Who is affected
- Deployments of n8n are affected by these vulnerabilities.
- Urgency
- Remediation is urgent due to the high severity of the vulnerabilities and potential for exploitation.
- Action
- Update to the latest version of n8n to mitigate these vulnerabilities.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch n8n
Get an email when a new n8n advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-2267
Recent advisories for n8n
A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.
- unknownCVE-2026-58661: n8n before 2.28.0 (and before 1.123.58 on the 1.x branch) contains a disk space exhaustion vul…nvd · 2026-07-10
- mediumCVE-2026-56354: n8n before 1.123.24, 2.10.4, and 2.12.0 (across its 1.x and 2.x branches) contains cross-site …nvd · 2026-07-10
- high[UPDATE] [high] n8n: Multiple vulnerabilitiescert-bund · 2026-07-10
- unknownCVE-2026-59209: n8n is an open source workflow automation platform. Prior to 1.123.61, 2.27.4, and, 2.28.1, an…nvd · 2026-07-09
- mediumCVE-2026-59208: n8n is an open source workflow automation platform. Prior to 2.27.4 and from 2.28.0 prior to 2…nvd · 2026-07-09
- mediumCVE-2026-59207: n8n is an open source workflow automation platform. Prior to 2.27.4 and 2.28.1, the AI Agents …nvd · 2026-07-09
More from CERT-Bund (BSI) Security Advisories
- medium[NEW] [medium] DENX U-Boot: Multiple vulnerabilities allow execution of arbitrary code and DoS2026-07-10
- medium[NEW] [medium] Samsung Android: Multiple vulnerabilities2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow unspecified attack2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10