Home

Description

n8n is an open source workflow automation platform. Prior to version 2.4.8, a vulnerability in the Python Code node allows authenticated users to break out of the Python sandbox environment and execute code outside the intended security boundary. This issue has been patched in version 2.4.8.

PUBLISHED Reserved 2026-01-29 | Published 2026-02-04 | Updated 2026-02-05 | Assigner GitHub_M




CRITICAL: 9.4CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Problem types

CWE-693: Protection Mechanism Failure

Product status

< 2.4.8
affected

References

github.com/...io/n8n/security/advisories/GHSA-8398-gmmx-564h

cve.org (CVE-2026-25115)

nvd.nist.gov (CVE-2026-25115)

Download JSON