Known Vulnerabilities for products from N8n
Listed below are 18 of the newest known vulnerabilities associated with the vendor "N8n".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-42237 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the fix for GHSA-f3f2-mcx... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42236 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the MCP OAuth client regi... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42235 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an unauthenticated attack... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42234 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user wit... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42233 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the Oracle Data... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42232 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user wit... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42231 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the xml2js libr... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42230 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the /mcp-oauth/register e... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42229 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the SeaTable no... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42228 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the /chat WebSocket endpo... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42227 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user wit... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42226 json | n8n is an open source workflow automation platform. Prior to versions 1.123.33 and 2.17.5, the dynamic-node-parameters endpoi... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-33665 json | n8n is an open source workflow automation platform. Prior to versions 2.4.0 and 1.121.0, when LDAP authentication is enabled,... | Not Provided | 2026-03-25 | 2026-03-30 |
| CVE-2026-33663 json | n8n is an open source workflow automation platform. Prior to versions 2.14.1, 2.13.3, and 1.123.27, an authenticated user wit... | Not Provided | 2026-03-25 | 2026-03-31 |
| CVE-2026-33660 json | n8n is an open source workflow automation platform. Prior to versions 2.14.1, 2.13.3, and 1.123.26, an authenticated user wit... | Not Provided | 2026-03-25 | 2026-03-30 |
| CVE-2023-27564 json | The n8n package 0.218.0 for Node.js allows Information Disclosure. | 7.5 - HIGH | 2023-05-10 | 2023-06-22 |
| CVE-2023-27563 json | The n8n package 0.218.0 for Node.js allows Escalation of Privileges. | 8.8 - HIGH | 2023-05-10 | 2023-06-22 |
| CVE-2023-27562 json | The n8n package 0.218.0 for Node.js allows Directory Traversal. | 6.5 - MEDIUM | 2023-05-10 | 2023-06-22 |