n8n.io
Security Scorecard
Score
100B
Total CVEs
7
Patch Rate
71%
5 patched
Avg Response
-
days to patch
Critical Gaps
0
exploitable, no detection
Severity Breakdown
Critical3
High3
Medium1
Low0
Patch Status
Patched5 (71%)
Partial/Workaround2 (29%)
Unpatched0 (0%)
CVEs (8)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2026-1470 | n8n Workflow Expression RCE | Critical | 9.9 | - | Patched |
| CVE-2026-0863 | N8n Python Runner Sandbox Escape | High | 8.5 | - | Patched |
| CVE-2025-68949 | N8n Workflow Automation Platform Remote IP Whitelist Bypass | Medium | 5.3 | - | Patched |
| CVE-2026-21858 | N8n Workflow Automation Vulnerability | Critical | 10.0 | - | Patched |
| CVE-2026-21877 | CVE-2026-21877 | Critical | 9.9 | - | Patched |
| CVE-2025-61914 | n8n Workflow Automation Platform XSS Vulnerability | High | 7.3 | - | Workaround |
| CVE-2025-65964 | n8n Workflow Automation Platform Vulnerability | High | 8.8 | - | Partial |
| CVE-2025-68697 | n8n Workflow Automation Platform Vulnerability | N/A | - | - | Workaround |