CNNVD-202512-1080 Information

CNNVD ID

CNNVD-202512-1080

Related CVE

CVE-2025-65964

• CNNVD Published: 2025-12-09

Description (Chinese)

n8n是n8n开源的一个可扩展的工作流自动化工具。 n8n 0.123.1版本至1.119.1版本存在安全漏洞，该漏洞源于项目预提交钩子缺少足够保护，可能导致远程代码执行。

Description (English)

n8n is an expanded workflow automation tool for n8n open source. No.8n 0.123.1 to 1.119.1 contains a security loophole that stems from the lack of adequate protection of the pre-submitted hooks of the project, which may result in remote code implementation.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

n8n

Published

2025-12-09

Last Modified

2026-02-24

References

https://n8n-docs.teamlab.info/hosting/securing/blocking-nodes/#exclude-nodes https://github.com/n8n-io/n8n/security/advisories/GHSA-wpqc-h9wp-chmq https://github.com/n8n-io/n8n/commit/d5a1171f95f75def5c3ac577707ab913e22aef04 https://github.com/n8n-io/n8n/releases/tag/n8n%401.119.2 https://access.redhat.com/security/cve/cve-2025-65964

Patch

https://github.com/n8n-io/n8n/releases