CVE-2026-42231: CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in n8n-io n8n
n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the xml2js library used to parse XML request bodies in n8n's webhook handler allowed prototype pollution via a crafted XML payload. An authenticated user with permission to create or modify workflows could exploit this to pollute the JavaScript object prototype and, by chaining the pollution with the Git node's SSH operations, achieve remote code execution on the n8n host. This issue has been patched in versions 1.123.32, 2.17.4, and 2.18.1.
AI Analysis
Technical Summary
This vulnerability arises from improper control of object prototype modification (CWE-1321) in the xml2js library used by n8n to parse XML request bodies in its webhook handler. An authenticated user authorized to create or modify workflows can send a crafted XML payload that pollutes the JavaScript object prototype. By chaining this pollution with the Git node's SSH operations, an attacker can execute arbitrary code remotely on the n8n host. The vulnerability affects n8n versions before 1.123.32, 2.17.4, and 2.18.1 and has been addressed in these versions.
Potential Impact
Successful exploitation allows an authenticated user with workflow modification permissions to achieve remote code execution on the n8n host. This can lead to full compromise of the affected system, including unauthorized access, data manipulation, or disruption of services. The CVSS 4.0 score is 9.4 (critical), reflecting high attack vector, low complexity, and significant impact on confidentiality, integrity, and availability.
Mitigation Recommendations
A fix is available and has been implemented in n8n versions 1.123.32, 2.17.4, and 2.18.1. Users should upgrade to these or later versions to remediate the vulnerability. Since the vulnerability requires authenticated access with workflow modification permissions, ensure that access controls are properly enforced. Patch status is confirmed by the vendor advisory information embedded in the description.
CVE-2026-42231: CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in n8n-io n8n
Description
n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the xml2js library used to parse XML request bodies in n8n's webhook handler allowed prototype pollution via a crafted XML payload. An authenticated user with permission to create or modify workflows could exploit this to pollute the JavaScript object prototype and, by chaining the pollution with the Git node's SSH operations, achieve remote code execution on the n8n host. This issue has been patched in versions 1.123.32, 2.17.4, and 2.18.1.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability arises from improper control of object prototype modification (CWE-1321) in the xml2js library used by n8n to parse XML request bodies in its webhook handler. An authenticated user authorized to create or modify workflows can send a crafted XML payload that pollutes the JavaScript object prototype. By chaining this pollution with the Git node's SSH operations, an attacker can execute arbitrary code remotely on the n8n host. The vulnerability affects n8n versions before 1.123.32, 2.17.4, and 2.18.1 and has been addressed in these versions.
Potential Impact
Successful exploitation allows an authenticated user with workflow modification permissions to achieve remote code execution on the n8n host. This can lead to full compromise of the affected system, including unauthorized access, data manipulation, or disruption of services. The CVSS 4.0 score is 9.4 (critical), reflecting high attack vector, low complexity, and significant impact on confidentiality, integrity, and availability.
Mitigation Recommendations
A fix is available and has been implemented in n8n versions 1.123.32, 2.17.4, and 2.18.1. Users should upgrade to these or later versions to remediate the vulnerability. Since the vulnerability requires authenticated access with workflow modification permissions, ensure that access controls are properly enforced. Patch status is confirmed by the vendor advisory information embedded in the description.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-04-25T05:37:12.117Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69f8eaaecbff5d8610415afc
Added to database: 5/4/2026, 6:51:26 PM
Last enriched: 5/4/2026, 7:06:40 PM
Last updated: 5/5/2026, 5:58:07 AM
Views: 7
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.