CVE-2026-25049CRITICAL 9.9EPSS p64.1%

CVE-2026-25049CVE-2026-25049

Description

n8n is an open source workflow automation platform. Prior to versions 1.123.17 and 2.5.2, an authenticated user with permission to create or modify workflows could abuse crafted expressions in workflow parameters to trigger unintended system command execution on the host running n8n. This issue has been patched in versions 1.123.17 and 2.5.2.

Scoring

CVSS 3.19.9 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS1.20% probability of exploitation · percentile 64.1% · 2026-06-18T12:00:27Z
Published2026-02-04
Last modified2026-02-05

Underlying weaknesses· 1

CWE-913

References

  1. https://github.com/n8n-io/n8n/commit/7860896909b3d42993a36297f053d2b0e633235d
  2. https://github.com/n8n-io/n8n/commit/936c06cfc1ad269a89e8ef7f8ac79c104436d54b
  3. https://github.com/n8n-io/n8n/security/advisories/GHSA-6cqr-8cfr-67f8

1

TypeTargetConfidenceTier
WeaknessImproper Control of Dynamically-Managed Code Resourcescwe-9130%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-27577
CVE
CVE-2026-25053
CVE
CVE-2026-25055
CVE
CVE-2026-25052
CVE
CVE-2026-25056
CVE
CVE-2026-25115
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.