CVE-2026-49465: n8n: Git Node Clone and Push Operations Bypass File Sandbox

June 16, 2026

An authenticated user with permission to create or modify workflows could supply a local filesystem path as the source repository in the Git node’s Clone operation, or as the target repository in the Push operation, bypassing the N8N_RESTRICT_FILE_ACCESS_TO file sandbox. This allowed the contents of any local git repository accessible to the n8n process to be cloned into an allowed path and read, circumventing the access restrictions that correctly blocked direct file reads to the same paths.

References

github.com/advisories/GHSA-5xp3-2w67-427v
github.com/n8n-io/n8n/security/advisories/GHSA-5xp3-2w67-427v
nvd.nist.gov/vuln/detail/CVE-2026-49465

Code Behaviors & Features

Detect and mitigate CVE-2026-49465 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →