CNNVD-202512-4823 Information

CNNVD ID

CNNVD-202512-4823

Related CVE

CVE-2025-68668

• CNNVD Published: 2025-12-26

Description (Chinese)

n8n是n8n开源的一个可扩展的工作流自动化工具。 n8n 1.0.0版本至2.0.0之前版本存在安全漏洞，该漏洞源于Python Code Node存在沙箱绕过问题，可能导致执行任意命令。

Description (English)

n8n is an expanded workflow automation tool for n8n open source. There was a security loophole in the pre-versions from 1.0.0 to 2.0.0, which stemmed from a sandbox bypass in Python Code Node, which could lead to the execution of arbitrary orders.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

n8n

Published

2025-12-26

Last Modified

2026-02-24

References

https://github.com/n8n-io/n8n/security/advisories/GHSA-62r4-hw23-cc8v https://access.redhat.com/security/cve/cve-2025-68668

Patch

https://github.com/n8n-io/n8n/releases