CVE-2026-25049: n8n Has Expression Escape Vulnerability Leading to RCE
Additional exploits in the expression evaluation of n8n have been identified and patched following CVE-2025-68613.
An authenticated user with permission to create or modify workflows could abuse crafted expressions in workflow parameters to trigger unintended system command execution on the host running n8n.
References
- github.com/advisories/GHSA-6cqr-8cfr-67f8
- github.com/n8n-io/n8n
- github.com/n8n-io/n8n/commit/7860896909b3d42993a36297f053d2b0e633235d
- github.com/n8n-io/n8n/commit/936c06cfc1ad269a89e8ef7f8ac79c104436d54b
- github.com/n8n-io/n8n/security/advisories/GHSA-6cqr-8cfr-67f8
- nvd.nist.gov/vuln/detail/CVE-2026-25049
Code Behaviors & Features
Detect and mitigate CVE-2026-25049 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →