Skip to main content
Threat Radar animated logo
DashboardThreatsMapFeedsPricingView Plans & Pricing
reconnecting
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.
Reconnecting to live updates…

n8n: Mehrere Schwachstellen

0
Medium
VulnerabilityCVE-2026-54301gcvecsafcve-2026-54301cve-2026-54302cve-2026-54304cve-2026-54305cve-2026-54306cve-2026-54307cve-2026-54308cve-2026-54309cve-2026-54310cve-2026-54311cve-2026-54312cve-2026-54313cve-2026-54314bundesamt-f-r-sicherheit-in-de
Published: Wed Jun 10 2026 (06/10/2026, 22:00:00 UTC)
Source: GCVE Database
Vendor/Project: Bundesamt für Sicherheit in der Informationstechnik
Product: n8n

Description

Multiple vulnerabilities have been identified in n8n, a workflow automation tool that connects various applications and services to automate tasks. These vulnerabilities affect versions up to and including 1.123.55. The Bundesamt für Sicherheit in der Informationstechnik has published an advisory covering 13 related CVEs. No specific technical details or CVSS scores are provided, and no known exploits are reported in the wild.

Affected software

npmmore threats →ai
n8n
pkg:npm/n8n
Affected versions
<=1.123.55

Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.

AI-Powered Analysis

Machine-generated threat intelligence

AILast updated: 06/17/2026, 16:51:35 UTC

Technical Analysis

The n8n workflow automation tool is affected by multiple security vulnerabilities, as documented by the Bundesamt für Sicherheit in der Informationstechnik under advisory WID-SEC-W-2026-1875. The advisory references 13 CVEs (CVE-2026-54301 through CVE-2026-54314, excluding some numbers), all impacting versions up to and including 1.123.55. No detailed technical descriptions or CVSS metrics are available in the provided data. The vulnerabilities collectively represent a security risk to affected versions of n8n.

Potential Impact

The impact involves potential security weaknesses in n8n versions up to 1.123.55. Without detailed vulnerability descriptions or CVSS scores, the exact nature and severity of the impact cannot be precisely determined. No known exploits in the wild have been reported, indicating limited current exploitation activity.

Mitigation Recommendations

Patch status is not yet confirmed — check the vendor advisory (Bundesamt für Sicherheit in der Informationstechnik, advisory WID-SEC-W-2026-1875) for current remediation guidance. Since no patch or fix information is provided, users should monitor official sources for updates and apply patches once available.

Pro Console: star threats, build custom feeds, automate alerts via Slack, email & webhooks.Upgrade to Pro

Technical Details

Gcve Source
db.gcve.eu
Csaf Category
csaf_base
Csaf Version
2.0
Publisher
Bundesamt für Sicherheit in der Informationstechnik
Advisory Id
WID-SEC-W-2026-1875
Cve Count
13
Additional Cves
["CVE-2026-54302","CVE-2026-54304","CVE-2026-54305","CVE-2026-54306","CVE-2026-54307","CVE-2026-54308","CVE-2026-54309","CVE-2026-54310","CVE-2026-54311","CVE-2026-54312","CVE-2026-54313","CVE-2026-54314"]
Cvss Version
null

Threat ID: 6a32d0029f87a2db092dc6b9

Added to database: 6/17/2026, 4:49:06 PM

Last enriched: 6/17/2026, 4:51:35 PM

Last updated: 6/17/2026, 6:23:04 PM

Views: 3

Community Reviews

0 reviews

Crowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.

Sort by
Loading community insights…

Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.

Actions

PRO

Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.

Please log in to the Console to use AI analysis features.

External Links

NVD DatabaseMITRE CVEWID-SEC-W-2026-1875 - CSAF VersionWID-SEC-2026-1875 - Portal VersionGitHub Security Advisory GHSA-2j5h-858j-5mpf vom 2026-06-10GitHub Security Advisory GHSA-2vff-hj5x-8gq7 vom 2026-06-10GitHub Security Advisory GHSA-42h7-m79w-wvg5 vom 2026-06-10GitHub Security Advisory GHSA-664h-gpgq-h6xx vom 2026-06-10GitHub Security Advisory GHSA-9c38-2mcm-q7f7 vom 2026-06-10GitHub Security Advisory GHSA-c37g-w77q-m4vp vom 2026-06-10GitHub Security Advisory GHSA-h3jj-5f3v-3685 vom 2026-06-10GitHub Security Advisory GHSA-h86q-fx34-gfjr vom 2026-06-10GitHub Security Advisory GHSA-hv7x-3x78-gx53 vom 2026-06-10GitHub Security Advisory GHSA-jpq7-226w-6cxx vom 2026-06-10GitHub Security Advisory GHSA-jqpw-qww5-cj4c vom 2026-06-10GitHub Security Advisory GHSA-jvc7-762p-3743 vom 2026-06-10GitHub Security Advisory GHSA-jwm3-qcfw-c5pp vom 2026-06-10GitHub Security Advisory GHSA-pmqw-72cg-wx85 vom 2026-06-10GitHub Security Advisory GHSA-qrx8-25qr-5r7v vom 2026-06-10GitHub Security Advisory GHSA-rm2v-h48j-895m vom 2026-06-10GitHub Security Advisory GHSA-v733-mwr6-fgcm vom 2026-06-10GitHub Security Advisory GHSA-x6p3-m6h9-fx7r vom 2026-06-10Search on Google

Need more coverage?

Upgrade to Pro Console for AI refresh and higher limits.

For incident response and remediation, OffSeq services can help resolve threats faster.

Latest Threats

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses