Full Report
n8n security advisory (AV26-091)
Analysis Summary
# Vulnerability: Multiple Critical Vulnerabilities in n8n (AV26-091)
## CVE Details
The advisory covers multiple vulnerabilities; specific CVE IDs and CVSS scores are listed per individual issue via the linked advisories, but summary details are:
* **CVE IDs:** CVE-2025-68613, CVE-2026-25049 (and others mentioned in linked GHSA reports)
* **CVSS Score:** Critical severity is implied for multiple Remote Code Execution (RCE) flaws.
* **CWE:** Varies (includes Expression Escape, Arbitrary File Write, OS Command Injection, XSS).
## Affected Systems
- **Products:** n8n (Merge Node, Git Node, SSH Node, Workflow UI, Core)
- **Versions:**
* Merge Node: Prior to v1.118.0 and v2.4.0
* Git Node: Prior to v1.123.10 and v2.5.0
* SSH Node: Prior to v1.123.12 and v2.4.0
* Workflow UI: Prior to v1.23.9 and v2.2.1
* Core n8n: Prior to v1.123.17 and v2.5.2
- **Configurations:** Affects standard deployments utilizing the vulnerable components (Merge, Git, SSH Nodes, or Workflow UI).
## Vulnerability Description
The advisory details several critical flaws across various n8n nodes and components:
1. **Expression Escape Leading to RCE (CVE-2025-68613, CVE-2026-25049):** A vulnerability likely related to improper handling or sanitization of expressions, leading to Remote Code Execution.
2. **Arbitrary File Write (Merge Node):** Allows an attacker to write arbitrary files, potentially leading to RCE.
3. **OS Command Injection (Git Node):** Allows execution of arbitrary operating system commands via the Git Node functionality.
4. **Arbitrary File Write on Remote Systems (SSH Node):** Allows exploitation through the SSH Node to write files on remote systems.
5. **Stored Cross-Site Scripting (Workflow UI):** A vulnerability in Markdown rendering within the Workflow UI that allows persistent XSS.
## Exploitation
- **Status:** Exploitation status is not explicitly detailed (e.g., In the wild), but multiple RCE and file write vulnerabilities suggest high exploitability potential.
- **Complexity:** Likely Low for RCE and Command Injection flaws, especially if unauthenticated access to the vulnerable node functionality is possible.
- **Attack Vector:** Varies, but likely Network due to RCE/Command Injection potential, and potential Client-side for XSS.
## Impact
- **Confidentiality:** High (Potential data exfiltration via RCE).
- **Integrity:** Critical (Code execution and arbitrary file write allows system compromise).
- **Availability:** High (RCE can lead to denial of service or system destruction).
## Remediation
### Patches
Users must update to versions that resolve the reported issues. Specific patched versions are those *equal to or greater than* the following:
- **n8n Core:** v1.123.17 or v2.5.2
- **Merge Node:** v1.118.0 or v2.4.0
- **Git Node:** v1.123.10 or v2.5.0
- **SSH Node:** v1.123.12 or v2.4.0
- **Workflow UI:** v1.23.9 or v2.2.1
### Workarounds
No specific vendor workarounds are listed in the summary announcement. Users should prioritize patching or, if necessary, temporarily disable or firewall access to affected nodes (Merge, Git, SSH) until updates can be applied.
## Detection
- **Indicators of Compromise:** Not explicitly listed, but look for unexpected file writes, unusual process execution originating from the n8n service, or excessive network activity related to node execution.
- **Detection Methods and Tools:** Monitor application/server logs for execution anomalies related to expression parsing, Git operations, or SSH connections handled by the n8n processes. Security monitoring tools capable of inspecting application code execution paths are recommended.
## References
- Vendor Security Advisories: hXXps://github[.]com/n8n-io/n8n/security/advisories/GHSA-6cqr-8cfr-67f8
- Vendor Security Advisories: hXXps://github[.]com/n8n-io/n8n/security/advisories/GHSA-hv53-3329-vmrm
- Vendor Security Advisories: hXXps://github[.]com/n8n-io/n8n/security/advisories/GHSA-9g95-qf3f-ggrw
- Vendor Security Advisories: hXXps://github[.]com/n8n-io/n8n/security/advisories/GHSA-m82q-59gv-mcr9
- Vendor Security Advisories: hXXps://github[.]com/n8n-io/n8n/security/advisories/GHSA-qpq4-pw7f-pp8w
- Central Advisory Root: hXXps://github[.]com/n8n-io/n8n/security