N8n
AI Threat Alert tracks 64 known AI/ML vulnerabilities affecting N8n products — each enriched with CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis. Browse every N8n CVE below, sorted by severity and recency.
| Severity | CVE | Headline | Package | CVSS |
|---|---|---|---|---|
| HIGH | CVE-2026-56776 | n8n: workflow:read scope bypass triggers execution | n8n | 7.4 |
| MEDIUM | CVE-2026-56778 | n8n: workflow:read scope triggers executions via API | n8n | 6.4 |
| MEDIUM | CVE-2026-59253 | n8n: auth bypass moves workflows across project folders | n8n | 5.0 |
| HIGH | CVE-2026-59257 | n8n: SQL injection via MySQL v1 node expressions | n8n | 8.8 |
Page 4 of 4
Frequently asked questions
How many known vulnerabilities affect N8n?
64 AI/ML CVEs affecting N8n products are tracked, sourced from NVD and GitHub Advisory.
What N8n products are affected?
The CVEs below map to the N8n AI/ML packages and tools tracked by AI Threat Alert; open any CVE to see the affected components and versions.
Where does the N8n vulnerability data come from?
Data is sourced from NVD and GitHub Advisory, then enriched with CVSS severity, EPSS exploit probability, and patch status for each CVE.
How can I monitor N8n for new vulnerabilities?
AI Threat Alert tracks N8n continuously; a Pro subscription adds breaking alerts when new CVEs affecting N8n are published.
How do I assess N8n's security exposure?
Each CVE below carries CVSS severity and exploitation signals, so you can review the highest-severity N8n issues first and judge the exposure for your stack.