CVE-2026-33660: CWE-94: Improper Control of Generation of Code ('Code Injection') in n8n-io n8n
CVE-2026-33660 is a critical code injection vulnerability in the n8n workflow automation platform prior to versions 2. 14. 1, 2. 13. 3, and 1. 123. 26. An authenticated user with permission to create or modify workflows can exploit the Merge node's "Combine by SQL" mode to read local files and achieve remote code execution due to insufficient sandboxing of SQL statements. The vulnerability has been fixed in the specified versions. Temporary mitigations include restricting workflow creation/editing permissions to trusted users and disabling the Merge node, but these do not fully eliminate the risk.
AI Analysis
Technical Summary
The vulnerability in n8n arises from improper control of code generation (CWE-94) within the Merge node's "Combine by SQL" mode. The AlaSQL sandbox fails to adequately restrict certain SQL statements, allowing an authenticated user with workflow modification rights to read sensitive local files or execute arbitrary code on the host. This affects n8n versions prior to 2.14.1, 2.13.3, and 1.123.26. The vendor has released fixed versions addressing this issue. Temporary mitigations involve limiting permissions and disabling the vulnerable node, but upgrading is the recommended remediation.
Potential Impact
Exploitation allows an authenticated user with workflow creation or modification permissions to read sensitive files on the n8n host and potentially execute arbitrary code, leading to full compromise of the affected instance. The CVSS 4.0 score of 9.4 reflects the critical nature of this vulnerability with network attack vector, low attack complexity, no user interaction, and high impact on confidentiality, integrity, and availability.
Mitigation Recommendations
A fix is available in n8n versions 2.14.1, 2.13.3, and 1.123.26. Users should upgrade to one of these versions or later to fully remediate the vulnerability. If immediate upgrade is not possible, administrators should restrict workflow creation and editing permissions to fully trusted users and/or disable the Merge node by adding `n8n-nodes-base.merge` to the `NODES_EXCLUDE` environment variable. These temporary mitigations do not fully eliminate the risk and should only be used short-term until patching is performed.
CVE-2026-33660: CWE-94: Improper Control of Generation of Code ('Code Injection') in n8n-io n8n
Description
CVE-2026-33660 is a critical code injection vulnerability in the n8n workflow automation platform prior to versions 2. 14. 1, 2. 13. 3, and 1. 123. 26. An authenticated user with permission to create or modify workflows can exploit the Merge node's "Combine by SQL" mode to read local files and achieve remote code execution due to insufficient sandboxing of SQL statements. The vulnerability has been fixed in the specified versions. Temporary mitigations include restricting workflow creation/editing permissions to trusted users and disabling the Merge node, but these do not fully eliminate the risk.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability in n8n arises from improper control of code generation (CWE-94) within the Merge node's "Combine by SQL" mode. The AlaSQL sandbox fails to adequately restrict certain SQL statements, allowing an authenticated user with workflow modification rights to read sensitive local files or execute arbitrary code on the host. This affects n8n versions prior to 2.14.1, 2.13.3, and 1.123.26. The vendor has released fixed versions addressing this issue. Temporary mitigations involve limiting permissions and disabling the vulnerable node, but upgrading is the recommended remediation.
Potential Impact
Exploitation allows an authenticated user with workflow creation or modification permissions to read sensitive files on the n8n host and potentially execute arbitrary code, leading to full compromise of the affected instance. The CVSS 4.0 score of 9.4 reflects the critical nature of this vulnerability with network attack vector, low attack complexity, no user interaction, and high impact on confidentiality, integrity, and availability.
Mitigation Recommendations
A fix is available in n8n versions 2.14.1, 2.13.3, and 1.123.26. Users should upgrade to one of these versions or later to fully remediate the vulnerability. If immediate upgrade is not possible, administrators should restrict workflow creation and editing permissions to fully trusted users and/or disable the Merge node by adding `n8n-nodes-base.merge` to the `NODES_EXCLUDE` environment variable. These temporary mitigations do not fully eliminate the risk and should only be used short-term until patching is performed.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-03-23T15:23:42.219Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 69c41f52f4197a8e3b733a31
Added to database: 3/25/2026, 5:45:54 PM
Last enriched: 4/3/2026, 1:17:17 PM
Last updated: 5/9/2026, 7:12:14 PM
Views: 184
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.