Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

N8n security patch for CVE-2025-68613

Security Patch Release
First reported
Last updated
Happening score
H score 55
1 unique sources, 1 articles

Summary

Hide ▲

n8n released fixes for CVE-2025-68613, a critical flaw in its workflow automation platform that could allow arbitrary code execution. The update covers versions >= 0.211.0 and < 1.120.4, with fixes shipped in 1.120.4, 1.121.1, and 1.122.0. Users are urged to apply the updates as soon as possible; if patching is delayed, restricting workflow creation and editing to trusted users and hardening the runtime can reduce risk.

Related Happenings

Cisco Secure Workload REST API patch release (CVE-2026-20223)

Security Patch Release
First: 22.05.2026 08:36 Last: 22.05.2026 08:36 Sources 1

About this happening: Cisco patched **CVE-2026-20223**, a **CVSS 10.0** Secure Workload REST API flaw that could expose sensitive data and allow configuration changes across tenant boundaries. The upda...

Open Happening

Ivanti security patch release for CVE-2026-8043

Security Patch Release
First: 18.05.2026 13:54 Last: 18.05.2026 13:54 Sources 1

About this happening: **Ivanti, Fortinet, SAP, Broadcom, and n8n** released **security fixes** on **2026-05-18** for flaws that could enable **authentication bypass**, **remote code execution**, **SQL...

Open Happening

Linux kernel Dirty Frag patch release (CVE-2026-43284, CVE-2026-43500)

Security Patch Release
First: 11.05.2026 17:30 Last: 11.05.2026 17:30 Sources 1

About this happening: **Major Linux distributions** are rolling out fixes for **Dirty Frag**, the **Linux kernel** patch release that covers **CVE-2026-43284** and **CVE-2026-43500**. The update matter...

Open Happening

TP-Link security patch release for CVE-2025-15517

Security Patch Release
First: 25.03.2026 13:11 Last: 25.03.2026 13:11 Sources 1

About this happening: **TP-Link** released **security updates** for its **Archer NX** router series to close a critical authentication-bypass flaw that could let attackers upload firmware without loggi...

Open Happening

N8n security fixes after Pillar findings

Security Patch Release
First: 12.03.2026 17:28 Last: 12.03.2026 17:28 Sources 1

About this happening: **n8n** released an **initial patch update in December 2025** and **nine security fixes in early 2026** to address reported flaws in the workflow automation platform. The update c...

Open Happening

Timeline

  1. 23.12.2025 09:34 2 articles · 5mo ago

    n8n releases fixes for CVE-2025-68613

    Mitigation Patch Update

    n8n disclosed CVE-2025-68613, a critical vulnerability in the workflow automation platform that could let an authenticated attacker execute arbitrary code with the privileges of the n8n process when workflow configuration expressions are evaluated in an insufficiently isolated execution context. The affected range covers versions >= 0.211.0 and < 1.120.4, and fixes were released in 1.120.4, 1.121.1, and 1.122.0 to reduce the risk of full compromise, unauthorized access to sensitive data, workflow modification, and system-level operations.

    Show sources
    Open in new tab