CNNVD-202510-4200 Information

CNNVD ID

CNNVD-202510-4200

Related CVE

CVE-2025-62726

• CNNVD Published: 2025-10-30

Description (Chinese)

n8n是n8n开源的一个可扩展的工作流自动化工具。 n8n 1.113.0之前版本存在安全漏洞，该漏洞源于Git Node组件克隆包含预提交钩子的远程仓库时触发执行，可能导致远程代码执行。

Description (English)

n8n is an expanded workflow automation tool for n8n open source. n8n 1.11.3.0 There is a security loophole in the pre-version version, which originates from the trigger of the operation of the long-range warehouse containing pre-submitted hooks for the cloning of the Git Node component, which could lead to remote code execution.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

n8n

Published

2025-10-30

Last Modified

2026-02-24

References

https://github.com/n8n-io/n8n/commit/5bf3db5ba84d3195bbe11bbd3c62f7086e090997 https://github.com/n8n-io/n8n/pull/19559 https://github.com/n8n-io/n8n/security/advisories/GHSA-xgp7-7qjq-vg47

Patch

https://n8n.io/