CVE-2026-21877: n8n Vulnerable to RCE via Arbitrary File Write

January 6, 2026

n8n is affected by an authenticated Remote Code Execution (RCE) vulnerability.

Under certain conditions, an authenticated user may be able to cause untrusted code to be executed by the n8n service. This could result in full compromise of the affected instance.

Both self-hosted and n8n Cloud instances are impacted.

References

github.com/advisories/GHSA-v364-rw7m-3263
github.com/n8n-io/n8n
github.com/n8n-io/n8n/security/advisories/GHSA-v364-rw7m-3263
nvd.nist.gov/vuln/detail/CVE-2026-21877

Code Behaviors & Features

Detect and mitigate CVE-2026-21877 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →