N8n 2.0.0 security patch release for CVE-2025-68668 and CVE-2025-68613
Security Patch Release
Summary
Hide ▲
Show ▼
n8n's version 2.0.0 closes CVE-2025-68668 and reduces host command-execution risk for deployments using the Python Code Node. The release matters because affected n8n versions 1.0.0 to <2.0.0 allowed authenticated workflow editors to reach the underlying host. n8n also advised temporary mitigations, including disabling the Code Node or Python support, until systems are upgraded. The same release window also sits alongside CVE-2025-68613, another critical flaw in the platform.
Related Happenings
Oracle security patch release for CVE-2026-21992
Security Patch Release
First: 21.03.2026 12:24
Last: 21.03.2026 12:24
Sources 1
About this happening:
**Oracle** released **security updates** for **CVE-2026-21992**, a critical flaw in **Identity Manager** and **Web Services Manager** that could enable **unauthenticated remote co...
Oracle security patch release for CVE-2026-21992
Security Patch ReleaseAbout this happening: **Oracle** released **security updates** for **CVE-2026-21992**, a critical flaw in **Identity Manager** and **Web Services Manager** that could enable **unauthenticated remote co...
N8n security fixes after Pillar findings
Security Patch Release
First: 12.03.2026 17:28
Last: 12.03.2026 17:28
Sources 1
About this happening:
**n8n** released an **initial patch update in December 2025** and **nine security fixes in early 2026** to address reported flaws in the workflow automation platform. The update c...
N8n security fixes after Pillar findings
Security Patch ReleaseAbout this happening: **n8n** released an **initial patch update in December 2025** and **nine security fixes in early 2026** to address reported flaws in the workflow automation platform. The update c...
CISA orders FCEB agencies to patch n8n by March 25, 2026
Public Sector Action
First: 12.03.2026 07:18
Last: 12.03.2026 07:18
Sources 1
About this happening:
CISA ordered **FCEB agencies** to patch their **n8n** instances by **March 25, 2026**, turning a vulnerable workflow-automation platform into a federal remediation deadline. The m...
CISA orders FCEB agencies to patch n8n by March 25, 2026
Public Sector ActionAbout this happening: CISA ordered **FCEB agencies** to patch their **n8n** instances by **March 25, 2026**, turning a vulnerable workflow-automation platform into a federal remediation deadline. The m...
Elementor Ally 4.1.0 security patch release (CVE-2026-2313)
Security Patch Release
First: 11.03.2026 21:38
Last: 11.03.2026 21:38
Sources 1
About this happening:
**Elementor** released **Ally 4.1.0** to fix **CVE-2026-2313**, a **SQL injection** flaw in the WordPress accessibility plugin that could expose **sensitive data**. The update lan...
Elementor Ally 4.1.0 security patch release (CVE-2026-2313)
Security Patch ReleaseAbout this happening: **Elementor** released **Ally 4.1.0** to fix **CVE-2026-2313**, a **SQL injection** flaw in the WordPress accessibility plugin that could expose **sensitive data**. The update lan...
Cisco Secure Firewall Management Center patch release (CVE-2026-20079, CVE-2026-20131)
Security Patch Release
First: 04.03.2026 21:12
Last: 04.03.2026 21:12
Sources 1
About this happening:
**Cisco Secure Firewall Management Center (FMC)** patch release for **CVE-2026-20131** and **CVE-2026-20079** addressed **CVSS 10** flaws that could let an **unauthenticated remot...
Cisco Secure Firewall Management Center patch release (CVE-2026-20079, CVE-2026-20131)
Security Patch ReleaseAbout this happening: **Cisco Secure Firewall Management Center (FMC)** patch release for **CVE-2026-20131** and **CVE-2026-20079** addressed **CVSS 10** flaws that could let an **unauthenticated remot...
Latest development: 20.03.2026 17:09
CISA ordered Federal Civilian Executive Branch (FCEB) agencies to apply security updates for CVE-2026-20131 in Cisco Secure Firewall Management Center (FMC) by Sunday, March 22 after Cisco updated its bulletin on March 18 to warn of active exploitation in the wild. Amazon threat intelligence researchers said Interlock ransomware had been exploiting CVE-2026-20131 as a zero-day since the end of January, and Cisco said the web-based management interface could let an unauthenticated, remote attacker execute arbitrary Java code as root on an affected device.
Timeline
-
11.03.2026 20:21 1 articles · 2mo ago
CISA adds n8n CVE-2025-68613 to KEV and orders patching
Legal Policy Action UpdateCISA added CVE-2025-68613 to its Known Exploited Vulnerabilities (KEV) catalog and ordered Federal Civilian Executive Branch (FCEB) agencies to patch n8n instances by March 25 under BOD 22-01. The n8n team had already addressed CVE-2025-68613 in December with n8n v1.122.0, and CISA also urged other network defenders to secure affected n8n systems against ongoing exploitation as soon as possible.
Show sources
- CISA orders feds to patch n8n RCE flaw exploited in attacks — www.bleepingcomputer.com — 11.03.2026 20:21
-
06.01.2026 07:08 2 articles · 4mo ago
N8n 2.0.0 security patch release for CVE-2025-68668 and CVE-2025-68613
Initial DisclosureOn **2026-01-06**, n8n shipped **version 2.0.0** to close the sandbox bypass in the **Python Code Node** and limit **command-execution** exposure for affected deployments.
Show sources
- New n8n Vulnerability (9.9 CVSS) Lets Authenticated Users Execute System Commands — thehackernews.com — 06.01.2026 07:08
- New n8n Vulnerability (9.9 CVSS) Lets Authenticated Users Execute System Commands — thehackernews.com — 06.01.2026 07:08