"The vulnerability, tracked as CVE-2026-21858 (CVSS score: 10.0), has been codenamed Ni8mare by Cyera Research Labs. Security researcher Dor Attias has been acknowledged for discovering and reporting the flaw on November 9, 2025. "A vulnerability in n8n allows an attacker to access files on the underlying server through execution of certain form-based workflows," n8n said in an advisory published today."
"CVE-2025-68613 (CVSS score: 9.9) - An improper control of dynamically-managed code resources that could allow authenticated attackers to achieve remote code execution (RCE) under certain conditions (Fixed in versions 1.120.4, 1.121.1, and 1.122.0) CVE-2025-68668 or N8scape (CVSS score: 9.9) - A sandbox bypass vulnerability that could allow an authenticated user with permission to create or modify workflows to execute arbitrary commands on the host system running n8n (Fixed in version 2.0.0)"
A maximum-severity vulnerability in n8n allows an unauthenticated remote attacker to gain complete control of vulnerable instances. The vulnerability, tracked as CVE-2026-21858 and codenamed Ni8mare by Cyera Research Labs, was reported on November 9, 2025 and exploits a Content-Type confusion flaw to extract sensitive secrets and forge administrator access. A vulnerable form-based workflow can expose files on the underlying server and enable further compromise depending on deployment. n8n disclosed four critical vulnerabilities in two weeks, including CVE-2025-68613 (RCE, fixed in 1.120.4/1.121.1/1.122.0), CVE-2025-68668 N8scape (sandbox bypass, fixed in 2.0.0), and CVE-2026-21877 (dangerous upload, fixed in 1.121.3).
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]