CVE-2025-68668: n8n Vulnerable to Arbitrary Command Execution in Pyodide based Python Code Node

December 26, 2025 (updated January 5, 2026)

A sandbox bypass vulnerability exists in the Python Code Node that uses Pyodide.

An authenticated user with permission to create or modify workflows can exploit this vulnerability to execute arbitrary commands on the host system running n8n, using the same privileges as the n8n process.

References

github.com/advisories/GHSA-62r4-hw23-cc8v
github.com/n8n-io/n8n
github.com/n8n-io/n8n/security/advisories/GHSA-62r4-hw23-cc8v
nvd.nist.gov/vuln/detail/CVE-2025-68668
www.smartkeyss.com/post/cve-2025-68668-breaking-out-of-the-python-sandbox-in-n8n

Code Behaviors & Features

Detect and mitigate CVE-2025-68668 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →