N8n Security Update Advisory (CVE-2026-25049)

Feb 09 2026

Overview

We have released a security update to address a vulnerability in n8n. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2026-25049

n8n version: 1.123.17 and earlier
n8n version: less than 2.5.2

Resolved Vulnerabilities

Remote code execution vulnerability due to expression escaping in n8n (CVE-2026-25049)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2026-25049

n8n version: 1.123.17
n8n version: 2.5.2

References

[1] Expression Escape Vulnerability Leading to RCE
https://github.com/n8n-io/n8n/security/advisories/GHSA-6cqr-8cfr-67f8

N8n Security Update Advisory (CVE-2026-25049)

IBM Product Security Update Advisory (CVE-2025-13379)

MS Family February 2026 Routine Security Update Advisory

Tags:

IBM Product Security Update Advisory (CVE-2025-13379)

MS Family February 2026 Routine Security Update Advisory